fix(deps): update all non-major pep621 dependencies

[red-hat-konflux]

This PR contains the following updates:

Package	Type	Update	Change
boto3	project.dependencies	patch	==1.38.27 -> ==1.38.41
boto3-stubs-lite	dependency-groups	patch	==1.38.27 -> ==1.38.41
mypy (changelog)	dependency-groups	patch	==1.16.0 -> ==1.16.1
pydantic (changelog)	project.dependencies	patch	==2.11.5 -> ==2.11.7
ruff (source, changelog)	dependency-groups	minor	==0.11.12 -> ==0.12.0

---

Release Notes

boto/boto3 (boto3)

v1.38.41

Compare Source

=======

• api-change:bedrock: [botocore] Add support for tiers in Content Filters and Denied Topics for Amazon Bedrock Guardrails.
• api-change:ecs: [botocore] Add ECS support for Windows Server 2025
• api-change:geo-places: [botocore] Geocode, ReverseGeocode, and GetPlace APIs added Intersections and SecondaryAddresses. To use, add to the AdditionalFeatures list in your request. This provides info about nearby intersections and secondary addresses that are associated with a main address. Also added MainAddress and ParsedQuery.
• api-change:glue: [botocore] AWS Glue Data Quality now provides aggregated metrics in evaluation results when publishAggregatedMetrics with row-level results are enabled. These metrics include summary statistics showing total counts of processed, passed, and failed rows and rules in a single view.
• api-change:mediaconvert: [botocore] This release adds a new SPECIFIED_OPTIMAL option for handling DDS when using DVB-Sub with high resolution video.

v1.38.40

Compare Source

=======

• api-change:bedrock: [botocore] This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a trained model into Amazon Bedrock for inference.
• api-change:emr-serverless: [botocore] This release adds the capability to enable IAM IdentityCenter Trusted Identity Propagation for users running Interactive Sessions on EMR Serverless Applications.
• api-change:lambda: [botocore] Support Schema Registry feature for Kafka Event Source Mapping. Customers can now configure a Schema Registry to enable schema validation and filtering for Avro, Protobuf, and JSON-formatted events in Lambda for Kafka Event Source.
• api-change:payment-cryptography: [botocore] Additional support for managing HMAC keys that adheres to changes documented in X9.143-2021 and provides better interoperability for key import/export
• api-change:payment-cryptography-data: [botocore] Additional support for managing HMAC keys that adheres to changes documented in X9.143-2021 and provides better interoperability for key import/export
• api-change:sagemaker: [botocore] This release introduces alternative support for utilizing CFN templates from S3 for SageMaker Projects.

v1.38.39

Compare Source

=======

• api-change:aiops: [botocore] This is the initial SDK release for Amazon AI Operations (AIOps). AIOps is a generative AI-powered assistant that helps you respond to incidents in your system by scanning your system's telemetry and quickly surface suggestions that might be related to your issue.
• api-change:autoscaling: [botocore] Add IncludeInstances parameter to DescribeAutoScalingGroups API
• api-change:imagebuilder: [botocore] Added paginators for imagebuilder.
• api-change:logs: [botocore] Added CloudWatch Logs Transformer support for converting CloudTrail, VPC Flow, EKS Audit, AWS WAF and Route53 Resolver logs to OCSF v1.1 format.
• api-change:s3: [botocore] Added support for renaming objects within the same bucket using the new RenameObject API.
• api-change:sagemaker: [botocore] Add support for p6-b200 instance type for SageMaker Hyperpod

v1.38.38

Compare Source

=======

• api-change:accessanalyzer: [botocore] We are launching a new analyzer type, internal access analyzer. The new analyzer will generate internal access findings, which help customers understand who within their AWS organization or AWS Account has access to their critical AWS resources.
• api-change:acm: [botocore] Adds support for Exportable Public Certificates
• api-change:backup: [botocore] AWS Backup is adding support for integration of its logically air-gapped vaults with the AWS Organizations Multi-party approval capability.
• api-change:bedrock: [botocore] This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a trained model into Amazon Bedrock for inference.
• api-change:dms: [botocore] Add "Virtual" field to Data Provider as well as "S3Path" and "S3AccessRoleArn" fields to DataProvider settings
• api-change:guardduty: [botocore] Adding support for extended threat detection for EKS Audit Logs and EKS Runtime Monitoring.
• api-change:inspector2: [botocore] Add Code Repository Scanning as part of AWS InspectorV2
• api-change:mpa: [botocore] This release enables customers to create Multi-party approval teams and approval requests to protect supported operations.
• api-change:network-firewall: [botocore] Release of Active Threat Defense in Network Firewall
• api-change:organizations: [botocore] Add support for policy operations on the SECURITYHUB_POLICY policy type.
• api-change:securityhub: [botocore] Adds operations, structures, and exceptions required for public preview release of Security Hub V2.
• api-change:sts: [botocore] The AWS Security Token Service APIs AssumeRoleWithSAML and AssumeRoleWithWebIdentity can now be invoked without pre-configured AWS credentials in the SDK configuration.
• api-change:wafv2: [botocore] AWS WAF can now suggest protection packs for you based on the application information you provide when you create a webACL.

v1.38.37

Compare Source

=======

• api-change:bedrock: [botocore] This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a Amazon SageMaker trained Amazon Nova model into Amazon Bedrock for inference.
• api-change:ecr: [botocore] The DescribeImageScanning API now includes lastInUseAt and InUseCount fields that can be used to prioritize vulnerability remediation for images that are actively being used.
• api-change:network-firewall: [botocore] You can now create firewalls using a Transit Gateway instead of a VPC, resulting in a TGW attachment.
• api-change:sagemaker: [botocore] This release 1) adds a new S3DataType Converse for SageMaker training 2)adds C8g R7gd M8g C6in P6 P6e instance type for SageMaker endpoint 3) adds m7i, r7i, c7i instance type for SageMaker Training and Processing.

v1.38.36

Compare Source

=======

• api-change:apigateway: [botocore] Documentation updates for Amazon API Gateway
• api-change:apigatewayv2: [botocore] Documentation updates for Amazon API Gateway
• api-change:connectcampaignsv2: [botocore] Added PutInstanceCommunicationLimits and GetInstanceCommunicationLimits APIs
• api-change:ecs: [botocore] This Amazon ECS release supports updating the capacityProviderStrategy parameter in update-service.
• api-change:emr-serverless: [botocore] This release adds support for retrieval of the optional executionIamPolicy field in the GetJobRun API response.
• api-change:iotfleetwise: [botocore] Add new status READY_FOR_CHECKIN used for vehicle synchronisation
• api-change:kms: [botocore] AWS KMS announces the support of ML-DSA key pairs that creates post-quantum safe digital signatures.
• api-change:pcs: [botocore] Fixed regex patterns for ARN fields.

v1.38.35

Compare Source

=======

• api-change:controlcatalog: [botocore] Introduced ListControlMappings API that retrieves control mappings. Added control aliases and governed resources fields in GetControl and ListControls APIs. New filtering capability in ListControls API, with implementation identifiers and implementation types.
• api-change:eks: [botocore] Release for EKS Pod Identity Cross Account feature and disableSessionTags flag.
• api-change:lexv2-models: [botocore] Add support for the Assisted NLU feature to improve bot performance
• api-change:networkmanager: [botocore] Add support for public DNS hostname resolution to private IP addresses across Cloud WAN-managed VPCs. Add support for security group referencing across Cloud WAN-managed VPCs.
• api-change:rds: [botocore] Updates Amazon RDS documentation for Amazon RDS for Db2 cross-Region replicas in standby mode.
• api-change:wafv2: [botocore] WAF now provides two DDoS protection options: resource-level monitoring for Application Load Balancers and the AWSManagedRulesAntiDDoSRuleSet managed rule group for CloudFront distributions.
• bugfix:Serialization: [botocore] Fixes a bug where instances of decimal.Decimal were unable to be passed into JSON serialization

v1.38.34

Compare Source

=======

• api-change:gameliftstreams: [botocore] Documentation updates for Amazon GameLift Streams to address formatting errors, correct resource ID examples, and update links to other guides

v1.38.33

Compare Source

=======

• api-change:appsync: [botocore] Deprecate atRestEncryptionEnabled and transitEncryptionEnabled attributes in CreateApiCache action. Encryption is always enabled for new caches.
• api-change:ce: [botocore] Support dual-stack endpoints for ce api
• api-change:customer-profiles: [botocore] This release introduces capability of Profile Explorer, using correct ingestion timestamp & using historical data for computing calculated attributes, and new standard objects for T&H as part of Amazon Connect Customer Profiles service.
• api-change:ec2: [botocore] Release to support Elastic VMware Service (Amazon EVS) Subnet and Amazon EVS Network Interface Types.
• api-change:efs: [botocore] Added support for Internet Protocol Version 6 (IPv6) on EFS Service APIs and mount targets.
• api-change:marketplace-catalog: [botocore] The ListEntities API now supports the EntityID, LastModifiedDate, ProductTitle, and Visibility filters for machine learning products. You can also sort using all of those filters.
• api-change:workspaces-thin-client: [botocore] Add ConflictException to UpdateEnvironment API

v1.38.32

Compare Source

=======

• api-change:bedrock-agent-runtime: [botocore] This release introduces the PromptCreationConfigurations input parameter, which includes fields to control prompt population for InvokeAgent or InvokeInlineAgent requests.
• api-change:kms: [botocore] Remove unpopulated KeyMaterialId from Encrypt Response
• api-change:rds: [botocore] Include Global Cluster Identifier in DBCluster if the DBCluster is a Global Cluster Member.
• api-change:rekognition: [botocore] Adds support for defining an ordered preference list of different Rekognition Face Liveness challenge types when calling CreateFaceLivenessSession.
• api-change:route53: [botocore] Amazon Route 53 now supports the Asia Pacific (Taipei) Region (ap-east-2) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region.
• api-change:s3tables: [botocore] S3 Tables now supports getting details about a table via its table ARN.

v1.38.31

Compare Source

=======

• api-change:bcm-pricing-calculator: [botocore] Updating the minimum for List APIs to be 1 (instead of 0)
• api-change:cloudformation: [botocore] Add new warning type 'EXCLUDED_PROPERTIES'
• api-change:kms: [botocore] AWS KMS announces the support for on-demand rotation of symmetric-encryption KMS keys with imported key material (EXTERNAL origin).
• api-change:wafv2: [botocore] AWS WAF adds support for ASN-based traffic filtering and support for ASN-based rate limiting.

v1.38.30

Compare Source

=======

• api-change:amplify: [botocore] Update documentation for cacheConfig in CreateApp API
• api-change:evs: [botocore] Amazon Elastic VMware Service (Amazon EVS) allows you to run VMware Cloud Foundation (VCF) directly within your Amazon VPC including simplified self-managed migration experience with guided workflow in AWS console or via AWS CLI, get full access to their VCF deployment and VCF license portability.
• api-change:invoicing: [botocore] Added new Invoicing ListInvoiceSummaries API Operation
• api-change:mediaconnect: [botocore] This release updates the DescribeFlow API to show peer IP addresses. You can now identify the peer IP addresses of devices connected to your sources and outputs. This helps you to verify and troubleshoot your flow's active connections.
• api-change:mediaconvert: [botocore] This release includes support for embedding and signing C2PA content credentials in MP4 outputs.
• api-change:network-firewall: [botocore] You can now monitor flow and alert log metrics from the Network Firewall console.
• api-change:sagemaker: [botocore] Added support for p6-b200 instance type in SageMaker Training Jobs and Training Plans.
• api-change:transcribe: [botocore] AWS Healthscribe now supports new templates for the clinical note summary: BIRP, SIRP, DAP, BEHAVIORAL_SOAP, and PHYSICAL_SOAP

v1.38.29

Compare Source

=======

• api-change:apigateway: [botocore] Adds support to set the routing mode for a custom domain name.
• api-change:apigatewayv2: [botocore] Adds support to create routing rules and set the routing mode for a custom domain name.
• api-change:emr-serverless: [botocore] AWS EMR Serverless: Adds a new option in the CancelJobRun API in EMR 7.9.0+, to cancel a job with grace period. This feature is enabled by default with a 120-second grace period for streaming jobs and is not enabled by default for batch jobs.

v1.38.28

Compare Source

=======

• api-change:athena: [botocore] Add support for the managed query result in the workgroup APIs. The managed query result configuration enables users to store query results to Athena owned storage.
• api-change:backup: [botocore] You can now subscribe to Amazon SNS notifications and Amazon EventBridge events for backup indexing. You can now receive notifications when a backup index is created, deleted, or fails to create, enhancing your ability to monitor and track your backup operations.
• api-change:bedrock-agent: [botocore] This release adds the Agent Lifecycle Paused State feature to Amazon Bedrock agents. By using an agent's alias, you can temporarily suspend agent operations during maintenance, updates, or other situations.
• api-change:compute-optimizer: [botocore] This release enables AWS Compute Optimizer to analyze Amazon Aurora database clusters and generate Aurora I/O-Optimized recommendations.
• api-change:cost-optimization-hub: [botocore] Support recommendations for Aurora instance and Aurora cluster storage.
• api-change:ecs: [botocore] Updates Amazon ECS documentation to include note for upcoming default log driver mode change.
• api-change:eks: [botocore] Add support for filtering ListInsights API calls on MISCONFIGURATION insight category
• api-change:entityresolution: [botocore] Add support for generating match IDs in near real-time.
• api-change:pcs: [botocore] Introduces SUSPENDING and SUSPENDED states for clusters, compute node groups, and queues.
• api-change:synthetics: [botocore] Support for Java runtime handler pattern.

python/mypy (mypy)

v1.16.1

Compare Source

pydantic/pydantic (pydantic)

v2.11.7

Compare Source

GitHub release

What's Changed

Fixes

• Copy FieldInfo instance if necessary during FieldInfo build by @​Viicos in #​11898

v2.11.6

Compare Source

GitHub release

What's Changed

Fixes

• Rebuild dataclass fields before schema generation by @​Viicos in #​11949
• Always store the original field assignment on FieldInfo by @​Viicos in #​11946

astral-sh/ruff (ruff)

v0.12.0

Compare Source

Check out the blog post for a migration
guide and overview of the changes!

Breaking changes

• Detection of more syntax errors

  Ruff now detects version-related syntax errors, such as the use of the match
  statement on Python versions before 3.10, and syntax errors emitted by
  CPython's compiler, such as irrefutable match patterns before the final
  case arm.

• New default Python version handling for syntax errors

  Ruff will default to the latest supported Python version (3.13) when
  checking for the version-related syntax errors mentioned above to prevent
  false positives in projects without a Python version configured. The default
  in all other cases, like applying lint rules, is unchanged and remains at the
  minimum supported Python version (3.9).

• Updated f-string formatting

  Ruff now formats multi-line f-strings with format specifiers to avoid adding a
  line break after the format specifier. This addresses a change to the Python
  grammar in version 3.13.4 that made such a line break a syntax error.

• rust-toolchain.toml is no longer included in source distributions

  The rust-toolchain.toml is used to specify a higher Rust version than Ruff's
  minimum supported Rust version (MSRV) for development and building release
  artifacts. However, when present in source distributions, it would also cause
  downstream package maintainers to pull in the same Rust toolchain, even if
  their available toolchain was MSRV-compatible.

Removed Rules

The following rules have been removed:

• suspicious-xmle-tree-usage
  (S320)

Deprecated Rules

The following rules have been deprecated:

• pandas-df-variable-name

Stabilization

The following rules have been stabilized and are no longer in preview:

• for-loop-writes (FURB122)
• check-and-remove-from-set (FURB132)
• verbose-decimal-constructor (FURB157)
• fromisoformat-replace-z (FURB162)
• int-on-sliced-str (FURB166)
• exc-info-outside-except-handler (LOG014)
• import-outside-top-level (PLC0415)
• unnecessary-dict-index-lookup (PLR1733)
• nan-comparison (PLW0177)
• eq-without-hash (PLW1641)
• pytest-parameter-with-default-argument (PT028)
• pytest-warns-too-broad (PT030)
• pytest-warns-with-multiple-statements (PT031)
• invalid-formatter-suppression-comment (RUF028)
• dataclass-enum (RUF049)
• class-with-mixed-type-vars (RUF053)
• unnecessary-round (RUF057)
• starmap-zip (RUF058)
• non-pep604-annotation-optional (UP045)
• non-pep695-generic-class (UP046)
• non-pep695-generic-function (UP047)
• private-type-parameter (UP049)

The following behaviors have been stabilized:

• [collection-literal-concatenation] (RUF005) now recognizes slices, in
  addition to list literals and variables.
• The fix for [readlines-in-for] (FURB129) is now marked as always safe.
• [if-else-block-instead-of-if-exp] (SIM108) will now further simplify
  expressions to use or instead of an if expression, where possible.
• [unused-noqa] (RUF100) now checks for file-level noqa comments as well
  as inline comments.
• [subprocess-without-shell-equals-true] (S603) now accepts literal strings,
  as well as lists and tuples of literal strings, as trusted input.
• [boolean-type-hint-positional-argument] (FBT001) now applies to types that
  include bool, like bool | int or typing.Optional[bool], in addition to
  plain bool annotations.
• [non-pep604-annotation-union] (UP007) has now been split into two rules.
  UP007 now applies only to typing.Union, while
  [non-pep604-annotation-optional] (UP045) checks for use of
  typing.Optional. UP045 has also been stabilized in this release, but you
  may need to update existing include, ignore, or noqa settings to
  accommodate this change.

Preview features

• [ruff] Check for non-context-manager use of pytest.raises, pytest.warns, and pytest.deprecated_call (RUF061) (#​17368)
• [syntax-errors] Raise unsupported syntax error for template strings prior to Python 3.14 (#​18664)

Bug fixes

• Add syntax error when conversion flag does not immediately follow exclamation mark (#​18706)
• Add trailing space around readlines (#​18542)
• Fix \r and \r\n handling in t- and f-string debug texts (#​18673)
• Hug closing } when f-string expression has a format specifier (#​18704)
• [flake8-pyi] Avoid syntax error in the case of starred and keyword arguments (PYI059) (#​18611)
• [flake8-return] Fix RET504 autofix generating a syntax error (#​18428)
• [pep8-naming] Suppress fix for N804 and N805 if the recommended name is already used (#​18472)
• [pycodestyle] Avoid causing a syntax error in expressions spanning multiple lines (E731) (#​18479)
• [pyupgrade] Suppress UP008 if super is shadowed (#​18688)
• [refurb] Parenthesize lambda and ternary expressions (FURB122, FURB142) (#​18592)
• [ruff] Handle extra arguments to deque (RUF037) (#​18614)
• [ruff] Preserve parentheses around deque in fix for unnecessary-empty-iterable-within-deque-call (RUF037) (#​18598)
• [ruff] Validate arguments before offering a fix (RUF056) (#​18631)
• [ruff] Skip fix for RUF059 if dummy name is already bound (#​18509)
• [pylint] Fix PLW0128 to check assignment targets in square brackets and after asterisks (#​18665)

Rule changes

• Fix false positive on mutations in return statements (B909) (#​18408)
• Treat ty: comments as pragma comments (#​18532)
• [flake8-pyi] Apply custom-typevar-for-self to string annotations (PYI019) (#​18311)
• [pyupgrade] Don't offer a fix for Optional[None] (UP007, UP045) (#​18545)
• [pyupgrade] Fix super(__class__, self) detection (UP008) (#​18478)
• [refurb] Make the fix for FURB163 unsafe for log2, log10, *args, and deleted comments (#​18645)

Server

• Support cancellation requests (#​18627)

Documentation

• Drop confusing second * from glob pattern example for per-file-target-version (#​18709)
• Update Neovim configuration examples (#​18491)
• [pylint] De-emphasize __hash__ = Parent.__hash__ (PLW1641) (#​18613)
• [refurb] Add a note about float literal handling (FURB157) (#​18615)

v0.11.13

Compare Source

Preview features

• [airflow] Add unsafe fix for module moved cases (AIR301,AIR311,AIR312,AIR302) (#​18367,#​18366,#​18363,#​18093)
• [refurb] Add coverage of set and frozenset calls (FURB171) (#​18035)
• [refurb] Mark FURB180 fix unsafe when class has bases (#​18149)

Bug fixes

• [perflint] Fix missing parentheses for lambda and ternary conditions (PERF401, PERF403) (#​18412)
• [pyupgrade] Apply UP035 only on py313+ for get_type_hints() (#​18476)
• [pyupgrade] Make fix unsafe if it deletes comments (UP004,UP050) (#​18393, #​18390)

Rule changes

• [fastapi] Avoid false positive for class dependencies (FAST003) (#​18271)

Documentation

• Update editor setup docs for Neovim and Vim (#​18324)

Other changes

• Support Python 3.14 template strings (t-strings) in formatter and parser (#​17851)

---

Configuration

📅 Schedule: Branch creation - "after 5am" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

This PR has been generated by MintMaker (powered by Renovate Bot).