fix(deps): update auth-api updates

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update	Pending
CacheControl	0.14.0 → 0.14.4			dependencies	patch
MarkupSafe (changelog)	2.1.1 → 2.1.5			dependencies	patch
attrs (changelog)	24.2.0 → 24.3.0			dependencies	minor
cachetools	5.5.0 → 5.5.2			dependencies	patch
certifi	2026.1.4 → 2026.2.25			dependencies	minor
google-cloud-core	2.4.3 → 2.5.0			dependencies	minor
google-cloud-pubsub	2.29.0 → 2.35.0			dependencies	minor
google-cloud-storage	3.0.0 → 3.9.0			dependencies	minor
jsonschema (changelog)	4.17.3 → 4.26.0			dependencies	minor
launchdarkly-server-sdk	9.5.0 → 9.15.0			dependencies	minor
pytest-asyncio (changelog)	^0.23.8 → ^0.26.0			test	minor
requests (source, changelog)	2.32.4 → 2.32.5			dependencies	patch
ruff (source, changelog)	^0.14.1 → ^0.15.0			dev	minor	0.15.4
sqlalchemy-utils	^0.41.2 → ^0.42.0			dependencies	minor
stoplight/prism	3.3.0 → 3.3.7				patch

---

Release Notes

psf/cachecontrol (CacheControl)

v0.14.4

Compare Source

What's Changed

• build(deps): bump github/codeql-action from 3.28.16 to 3.28.17 in the actions group by @​dependabot[bot] in #​382
• build(deps): bump github/codeql-action from 3.28.17 to 3.28.18 in the actions group by @​dependabot[bot] in #​383
• build(deps): bump astral-sh/setup-uv from 6.0.1 to 6.1.0 in the actions group by @​dependabot[bot] in #​385
• chore(ci): cleanup, add Python 3.14 by @​woodruffw in #​392
• fix typo by @​zackzack38 in #​388
• chore: prepare for 0.14.4 by @​woodruffw in #​394

New Contributors

• @​zackzack38 made their first contribution in #​388

Full Changelog: psf/cachecontrol@v0.14.3...v0.14.4

v0.14.3

Compare Source

• Drop support for Python 3.8.

v0.14.2

Compare Source

• Eliminate a race condition when overwriting cache entries.
• Fix a requests object leak when doing caching on a streamed response

v0.14.1

Compare Source

What's Changed

• github: bump signing step, use dependabot by @​woodruffw in #​329
• build(deps): bump the actions group with 1 update by @​dependabot in #​330
• GitHub Action to spellcheck and lint Python code by @​cclauss in #​333
• workflows/tests: patch macos runner version for 3.7 by @​woodruffw in #​334
• build(deps): bump sigstore/gh-action-sigstore-python from 2.1.1 to 3.0.0 in the actions group by @​dependabot in #​338
• drop Python 3.7, add 3.13 by @​woodruffw in #​340

New Contributors

• @​dependabot made their first contribution in #​330
• @​cclauss made their first contribution in #​333

Full Changelog: psf/cachecontrol@v0.14.0...v0.14.1

pallets/markupsafe (MarkupSafe)

v2.1.5

Compare Source

Released 2024-02-02

• Fix striptags not collapsing spaces. :issue:417

v2.1.4

Compare Source

Released 2024-01-19

• Don't use regular expressions for striptags, avoiding a performance
  issue. :pr:413

v2.1.3

Compare Source

Released 2023-06-02

• Implement format_map, casefold, removeprefix, and removesuffix
  methods. :issue:370
• Fix static typing for basic str methods on Markup. :issue:358
• Use Self for annotating return types. :pr:379

v2.1.2

Compare Source

Released 2023-01-17

• Fix striptags not stripping tags containing newlines.
  :issue:310

python-attrs/attrs (attrs)

v24.3.0

Compare Source

Backwards-incompatible Changes

• Python 3.7 has been dropped.
  #​1340

Changes

• Introduce attrs.NothingType, for annotating types consistent with attrs.NOTHING.
  #​1358
• Allow mutating __suppress_context__ and __notes__ on frozen exceptions.
  #​1365
• attrs.converters.optional() works again when taking attrs.converters.pipe() or another Converter as its argument.
  #​1372
• attrs instances now support copy.replace().
  #​1383
• attrs.validators.instance_of()'s type hints now allow for union types.
  For example: instance_of(str | int)
  #​1385

certifi/python-certifi (certifi)

v2026.2.25

Compare Source

googleapis/python-cloud-core (google-cloud-core)

v2.5.0

Compare Source

Features

• Add Python 3.14 support (#​333) (c26e587)

Bug Fixes

• Remove setup.cfg configuration for creating universal wheels (#​332) (78ce8a6)
• Resolve issue where pre-release versions of dependencies are installed (#​329) (ab9785d)

googleapis/python-pubsub (google-cloud-pubsub)

v2.35.0

Compare Source

Documentation

• A comment for field topic in message .google.pubsub.v1.Subscription is updated (07011139f51e4ff195889faf849bd707655e6d46)
• A comment for field analytics_hub_subscription_info in message .google.pubsub.v1.Subscription is updated (07011139f51e4ff195889faf849bd707655e6d46)
• A comment for field subscription in message .google.pubsub.v1.CreateSnapshotRequest is updated (07011139f51e4ff195889faf849bd707655e6d46)
• add tags documentation links to Pub/Sub resource tags fields (07011139f51e4ff195889faf849bd707655e6d46)
• Add the IDENTIFIER field behavior annotation to fields of Cloud Pub/Sub methods that represent a specific identity and need to be sourced with additional care (07011139f51e4ff195889faf849bd707655e6d46)

Features

• Add AIInference MessageTransform type (07011139f51e4ff195889faf849bd707655e6d46)

v2.34.0

Compare Source

Features

• support mTLS certificates when available (#​1566) (24761a2fedeb17f5af98a72a62306ad59306a553)

v2.33.0

Compare Source

Features

• Add AwsKinesisFailureReason.ApiViolationReason (ac68093)
• Add tags to Subscription, Topic, and CreateSnapshotRequest messages for use in CreateSubscription, CreateTopic, and CreateSnapshot requests respectively (ac68093)
• Annotate some resource fields with their corresponding API types (ac68093)

Bug Fixes

• Deprecate credentials_file argument (ac68093)

Documentation

• A comment for field received_messages in message .google.pubsub.v1.StreamingPullResponse is changed (ac68093)

v2.32.0

Compare Source

Features

• Adds Python 3.14 support (#​1512) (95a2690)
• Debug logs (#​1460) (b5d4a45)
• Support the protocol version in StreamingPullRequest (#​1455) (e6294a1)

Bug Fixes

• Ignore future warnings on python versions (#​1546) (8e28dea)

v2.31.1

Compare Source

Bug Fixes

• Change Log Severities for Terminated Streams (#​1433) (3a3aa79)
• Propagate Otel Context to Subscriber Callback if Provided (#​1429) (b0f6f49)

v2.31.0

Compare Source

Features

• Add MessageTransformationFailureReason to IngestionFailureEvent (#​1427) (8ab13e1)

Bug Fixes

• Surface Fatal Stream Errors to Future; Adjust Retryable Error Codes (#​1422) (e081beb)

v2.30.0

Compare Source

Features

• Add SchemaViolationReason to IngestionFailureEvent (#​1411) (c046ca2)

v2.29.1

Compare Source

Bug Fixes

• Remove setup.cfg configuration for creating universal wheels (#​1376) (60639c4)

Documentation

• sample: Add samples for topic and subscription SMTs (#​1386) (4d072e0)
• Update documentation for JavaScriptUDF to indicate that the message_id metadata field is optional instead of required (#​1380) (be90054)
• Update readme links (#​1409) (77ba05d)

googleapis/python-storage (google-cloud-storage)

v3.9.0

Compare Source

Features

• add get_object method for async grpc client (#​1735) (0e5ec29bc6a31b77bcfba4254cef5bffb199095c)
• expose DELETE_OBJECT in AsyncGrpcClient (#​1718) (c8dd7a0b124c395b7b60189ee78f47aba8d51f7d)
• update generation for MRD (#​1730) (08bc7082db7392f13bc8c51511b4afa9c7b157c9)
• Move Zonal Buckets features of _experimental (#​1728) (74c9ecc54173420bfcd48498a8956088a035af50)
• add default user agent for grpc (#​1726) (7b319469d2e495ea0bf7367f3949190e8f5d9fff)
• expose finalized_time in blob.py applicable for GET_OBJECT in ZB (#​1719) (8e21a7fe54d0a043f31937671003630a1985a5d2)
• add context manager to mrd (#​1724) (5ac2808a69195c688ed42c3604d4bfadbb602a66)
• integrate writes strategy and appendable object writer (#​1695) (dbd162b3583e32e6f705a51f5c3fef333a9b89d0)
• Add support for opening via write_handle and fix write_handle type (#​1715) (2bc15fa570683ba584230c51b439d189dbdcd580)
• Add micro-benchmarks for writes comparing standard (regional) vs rapid (zonal) buckets. (#​1707) (dbe9d8b89d975dfbed8c830a5687ccfafea51d5f)
• Add micro-benchmarks for reads comparing standard (regional) vs rapid (zonal) buckets. (#​1697) (1917649fac41481da1adea6c2a9f4ab1298a34c4)
• send user_agent to grpc channel (#​1712) (cdb2486bb051dcbfbffc2510aff6aacede5e54d3)
• add samples for appendable objects writes and reads (#​1705) (2e1a1eb5cbe1c909f1f892a0cc74fe63c8ef36ff)
• add samples for appendable objects writes and reads (2e1a1eb5cbe1c909f1f892a0cc74fe63c8ef36ff)
• add support for generation=0 to avoid overwriting existing objects and add is_stream_open support (#​1709) (ea0f5bf8316f4bfcff2728d9d1baa68dde6ebdae)
• add support for generation=0 to prevent overwriting existing objects (ea0f5bf8316f4bfcff2728d9d1baa68dde6ebdae)
• add is_stream_open property to AsyncAppendableObjectWriter for stream status check (ea0f5bf8316f4bfcff2728d9d1baa68dde6ebdae)

Bug Fixes

• receive eof while closing reads stream (#​1733) (2ef63396dca1c36f9b0f0f3cf87a61b5aa4bd465)
• Change contructors of MRD and AAOW AsyncGrpcClient.grpc_client to AsyncGrpcClient (#​1727) (e730bf50c4584f737ab86b2e409ddb27b40d2cec)
• instance grpc client once per process in benchmarks (#​1725) (721ea2dd6c6db2aa91fd3b90e56a831aaaa64061)
• update write handle on every recv() (#​1716) (5d9fafe1466b5ccb1db4a814967a5cc8465148a2)
• Fix formatting in setup.py dependencies list (#​1713) (cc4831d7e253b265b0b96e08b5479f4c759be442)
• implement requests_done method to signal end of requests in async streams. Gracefully close streams. (#​1700) (6c160794afded5e8f4179399f1fe5248e32bf707)
• implement requests_done method to signal end of requests in async streams. Gracefully close streams. (6c160794afded5e8f4179399f1fe5248e32bf707)

v3.8.0

Compare Source

Features

• flush the last chunk in append method (#​1699) (89bfe7a5fcd0391da35e9ceccc185279782b5420)
• add write resumption strategy (#​1663) (a57ea0ec786a84c7ae9ed82c6ae5d38ecadba4af)
• add bidi stream retry manager. (#​1632) (d90f0ee09902a21b186106bcf0a8cb0b81b34340)
• implement "append_from_file" (#​1686) (1333c956da18b4db753cda98c41c3619c84caf69)
• make flush size configurable (#​1677) (f7095faf0a81239894ff9d277849788b62eb6ac5)
• compute chunk wise checksum for bidi_writes (#​1675) (139390cb01f93a2d61e7ec201e3637dffe0b2a34)
• expose persisted size in mrd (#​1671) (0e2961bef285fc064174a5c18e3db05c7a682521)

Bug Fixes

• add system test for opening with read_handle (#​1672) (6dc711dacd4d38c573aa4ca9ad71fe412c0e49c1)
• no state lookup while opening bidi-write stream (#​1636) (2d5a7b16846a69f3a911844971241899f60cce14)
• close write object stream always (#​1661) (4a609a4b3f4ba1396825911cb02f8a9649135cd5)

v3.7.0

Compare Source

Features

• Auto enable mTLS when supported certificates are detected (#​1637) (4e91c54)
• Send entire object checksum in the final api call of resumable upload (#​1654) (ddce7e5)
• Support urllib3 >= 2.6.0 (#​1658) (57405e9)

Bug Fixes

• Fix for move_blob failure when the new blob name contains characters that need to be url encoded (#​1605) (ec470a2)

v3.6.0

Compare Source

Features

• Add support for partial list buckets (#​1606) (92fc2b0)
• Make return_partial_success and unreachable fields public for list Bucket (#​1601) (323cddd)
• zb-experimental: Add async write object stream (5ab8103)
• zb-experimental: Add async write object stream (#​1612) (5ab8103)

Bug Fixes

• Dont pass credentials to StorageClient (#​1608) (195d644)

v3.5.0

Compare Source

Features

• experimental: Add base resumption strategy for bidi streams (#​1594) (5fb85ea)
• experimental: Add checksum for bidi reads operation (#​1566) (93ce515)
• experimental: Add read resumption strategy (#​1599) (5d5e895)
• experimental: Handle BidiReadObjectRedirectedError for bidi reads (#​1600) (71b0f8a)
• Indicate that md5 is used as a CRC (#​1522) (961536c)
• Provide option to update user_agent (#​1596) (02f1451)

Bug Fixes

• Deprecate credentials_file argument (74415a2)
• Flaky system tests for resumable_media (#​1592) (7fee3dd)
• Make download_ranges compatible with asyncio.create_task(..) (#​1591) (faf8b83)
• Make download_ranges compatible with asyncio.create_task(..) (#​1591) (faf8b83)
• Redact sensitive data from OTEL traces and fix env var parsing (#​1553) (a38ca19)
• Redact sensitive data from OTEL traces and fix env var parsing (#​1553) (a38ca19)
• Use separate header object for each upload in Transfer Manager MPU (#​1595) (0d867bd)

v3.4.1

Compare Source

Bug Fixes

• Fixes #​1561 by adding an option to specify the entire object checksum for resumable uploads via the upload_from_string, upload_from_file, and upload_from_filename methods (acb918e)

v3.4.0

Compare Source

Features

• experimental: Add async grpc client (#​1537) (ac57b8d)
• experimental: Add grpc client (#​1533) (5674587)

Bug Fixes

• GAPIC generation failed with 'Directory not empty' (#​1542) (c80d820)

v3.3.1

Compare Source

Bug Fixes

• Provide option to user to set entire object checksum at "initiate a resumable upload session" and send the same (#​1525) (a8109e0)
• Send part's checksum for XML MPU part upload (#​1529) (2ad77c7)

v3.3.0

Compare Source

Features

• Add support for bucket IP filter (#​1516) (a29073c)

Bug Fixes

• Add logs on AssertionError for issue #​1512 (#​1518) (6a9923e)

Documentation

• Update the documentation of move_blob function (#​1507) (72252e9)

v3.2.0

Compare Source

Features

• Adding support of single shot download (#​1493) (61c5d5f)

v3.1.1

Compare Source

Bug Fixes

• Add a check for partial response data (#​1487) (7e0412a)
• Add trove classifier for Python 3.13 (0100916)
• deps: Require google-crc32c >= 1.1.3 (0100916)
• deps: Require protobuf >= 3.20.2, < 7.0.0 (0100916)
• deps: Require requests >= 2.22.0 (0100916)
• Remove setup.cfg configuration for creating universal wheels (#​1448) (d3b6b3f)
• Resolve issue where pre-release versions of dependencies are installed (0100916)
• Segmentation fault in tink while writing data (#​1490) (2a46c0b)

Documentation

• Move quickstart to top of readme (#​1451) (53257cf)
• Update README to break infinite redirect loop (#​1450) (03f1594)

v3.1.0

Compare Source

Features

• Add api_key argument to Client constructor (#​1441) (c869e15)
• Add Bucket.move_blob() for HNS-enabled buckets (#​1431) (24c000f)

python-jsonschema/jsonschema (jsonschema)

v4.26.0

Compare Source

=======

• Decrease import time by delaying importing of urllib.request (#​1416).

v4.25.1

Compare Source

=======

• Fix an incorrect required argument in the Validator protocol's type annotations (#​1396).

v4.25.0

Compare Source

=======

• Add support for the iri and iri-reference formats to the format-nongpl extra via the MIT-licensed rfc3987-syntax.
  They were alread supported by the format extra. (#​1388).

v4.24.1

Compare Source

=======

• Properly escape segments in ValidationError.json_path (#​139).

v4.24.0

Compare Source

=======

• Fix improper handling of unevaluatedProperties in the presence of additionalProperties (#​1351).
• Support for Python 3.8 has been dropped, as it is end-of-life.

v4.23.0

Compare Source

=======

• Do not reorder dictionaries (schemas, instances) that are printed as part of validation errors.
• Declare support for Py3.13

v4.22.0

Compare Source

=======

• Improve best_match (and thereby error messages from jsonschema.validate) in cases where there are multiple sibling errors from applying anyOf / allOf -- i.e. when multiple elements of a JSON array have errors, we now do prefer showing errors from earlier elements rather than simply showing an error for the full array (#​1250).
• (Micro-)optimize equality checks when comparing for JSON Schema equality by first checking for object identity, as == would.

v4.21.1

Compare Source

=======

• Slightly speed up the contains keyword by removing some unnecessary validator (re-)creation.

v4.21.0

Compare Source

=======

• Fix the behavior of enum in the presence of 0 or 1 to properly consider True and False unequal (#​1208).
• Special case the error message for {min,max}{Items,Length,Properties} when they're checking for emptiness rather than true length.

v4.20.0

Compare Source

=======

• Properly consider items (and properties) to be evaluated by unevaluatedItems (resp. unevaluatedProperties) when behind a $dynamicRef as specified by the 2020 and 2019 specifications.
• jsonschema.exceptions.ErrorTree.__setitem__ is now deprecated.
  More broadly, in general users of jsonschema should never be mutating objects owned by the library.

v4.19.2

Compare Source

=======

• Fix the error message for additional items when used with heterogeneous arrays.
• Don't leak the additionalItems keyword into JSON Schema draft 2020-12, where it was replaced by items.

v4.19.1

Compare Source

=======

• Single label hostnames are now properly considered valid according to the hostname format.
  This is the behavior specified by the relevant RFC (1123).
  IDN hostname behavior was already correct.

v4.19.0

Compare Source

=======

• Importing the Validator protocol directly from the package root is deprecated.
  Import it from jsonschema.protocols.Validator instead.
• Automatic retrieval of remote references (which is still deprecated) now properly succeeds even if the retrieved resource does not declare which version of JSON Schema it uses.
  Such resources are assumed to be 2020-12 schemas.
  This more closely matches the pre-referencing library behavior.

v4.18.6

Compare Source

=======

• Set a jsonschema specific user agent when automatically retrieving remote references (which is deprecated).

v4.18.5

Compare Source

=======

• Declare support for Py3.12

v4.18.4

Compare Source

=======

• Improve the hashability of wrapped referencing exceptions when they contain hashable data.

v4.18.3

Compare Source

=======

• Properly preserve applicable_validators in extended validators.
  Specifically, validators extending early drafts where siblings of $ref were ignored will properly ignore siblings in the extended validator.

v4.18.2

Compare Source

=======

• Fix an additional regression with the deprecated jsonschema.RefResolver and pointer resolution.

v4.18.1

Compare Source

=======

• Fix a regression with jsonschema.RefResolver based resolution when used in combination with a custom validation dialect (via jsonschema.validators.create).

v4.18.0

Compare Source

=======

This release majorly rehauls the way in which JSON Schema reference resolution is configured.
It does so in a way that should be backwards compatible, preserving old behavior whilst emitting deprecation warnings.

• jsonschema.RefResolver is now deprecated in favor of the new referencing library <https://github.com/python-jsonschema/referencing/>_.
  referencing will begin in beta, but already is more compliant than the existing $ref support.
  This change is a culmination of a meaningful chunk of work to make $ref resolution more flexible and more correct.
  Backwards compatibility should be preserved for existing code which uses RefResolver, though doing so is again now deprecated, and all such use cases should be doable using the new APIs.
  Please file issues on the referencing tracker if there is functionality missing from it, or here on the jsonschema issue tracker if you have issues with existing code not functioning the same, or with figuring out how to change it to use referencing.
  In particular, this referencing change includes a change concerning automatic retrieval of remote references (retrieving http://foo/bar automatically within a schema).
  This behavior has always been a potential security risk and counter to the recommendations of the JSON Schema specifications; it has survived this long essentially only for backwards compatibility reasons, and now explicitly produces warnings.
  The referencing library itself will not automatically retrieve references if you interact directly with it, so the deprecated behavior is only triggered if you fully rely on the default $ref resolution behavior and also include remote references in your schema, which will still be retrieved during the deprecation period (after which they will become an error).
• Support for Python 3.7 has been dropped, as it is nearing end-of-life.
  This should not be a "visible" change in the sense that requires-python has been updated, so users using 3.7 should still receive v4.17.3 when installing the library.
• On draft 2019-09, unevaluatedItems now properly does not consider items to be evaluated by an additionalItems schema if items is missing from the schema, as the specification says in this case that additionalItems must be completely ignored.
• Fix the date format checker on Python 3.11 (when format assertion behavior is enabled), where it was too liberal (#​1076).
• Speed up validation of unevaluatedProperties (#​1075).

Deprecations

• jsonschema.RefResolver -- see above for details on the replacement
• jsonschema.RefResolutionError -- see above for details on the replacement
• relying on automatic resolution of remote references -- see above for details on the replacement
• importing jsonschema.ErrorTree -- instead import it via jsonschema.exceptions.ErrorTree
• importing jsonschema.FormatError -- instead import it via jsonschema.exceptions.FormatError

launchdarkly/python-server-sdk (launchdarkly-server-sdk)

v9.15.0

Compare Source

⚠ BREAKING CHANGES

Note: The following breaking changes apply only to FDv2 (Flag Delivery v2) early access features, which are not subject to semantic versioning and may change without a major version bump.

• Update ChangeSet to always require a Selector (#​405) ([5dc4f81](https://redirect.github.com/launchdarkly/python-server-sdk/commit/5dc4f81688e814045

---

Configuration

📅 Schedule: Branch creation - "before 6am every weekday" in timezone America/Vancouver, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[seeker25]

NO

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: auth-api/pyproject.toml

Artifact update for ruff resolved to version 0.15.4, which is a pending version that has not yet passed the Minimum Release Age threshold.
Renovate was attempting to update to 0.15.3
This is (likely) not a bug in Renovate, but due to the way your project pins dependencies, _and_ how Renovate calls your package manager to update them.
Until Renovate supports specifying an exact update to your package manager (https://github.com/renovatebot/renovate/issues/41624), it is recommended to directly pin your dependencies (with `rangeStrategy=pin` for apps, or `rangeStrategy=widen` for libraries)
See also: https://docs.renovatebot.com/dependency-pinning/