Skip to content

Comments

deps: bump the production-dependencies group across 1 directory with 38 updates#2048

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/production-dependencies-0067f3b106
Closed

deps: bump the production-dependencies group across 1 directory with 38 updates#2048
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/production-dependencies-0067f3b106

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 22, 2025

Bumps the production-dependencies group with 34 updates in the / directory:

Package From To
attrs 25.3.0 25.4.0
tiktoken 0.11.0 0.12.0
rich 14.0.0 14.2.0
schema 0.7.7 0.7.8
pyyaml 6.0.2 6.0.3
requests 2.32.3 2.32.5
pydantic 2.11.4 2.12.5
pip 25.1.1 25.3
json-schema-to-pydantic 0.4.6 0.4.7
cohere 5.15.0 5.20.1
anthropic 0.51.0 0.75.0
transformers 4.51.3 4.57.3
boto3 1.38.18 1.42.14
google-generativeai 0.8.5 0.8.6
ollama 0.4.8 0.6.1
sqlalchemy 2.0.41 2.0.45
snowflake-sqlalchemy 1.7.3 1.8.2
snowflake 1.5.0 1.8.0
marqo 3.13.0 3.18.0
pymongo 4.12.1 4.15.5
pgvector 0.4.1 0.4.2
psycopg2-binary 2.9.10 2.9.11
qdrant-client 1.14.2 1.16.1
astrapy 2.0.1 2.1.0
voyageai 0.3.2 0.3.7
playwright 1.52.0 1.57.0
beautifulsoup4 4.13.4 4.14.3
markdownify 1.1.0 1.2.2
duckduckgo-search 8.0.2 8.1.1
tavily-python 0.7.2 0.7.17
opentelemetry-sdk 1.33.1 1.39.1
diffusers 0.33.1 0.36.0
mail-parser 4.1.2 4.1.4
pandas 2.2.3 2.3.3

Updates attrs from 25.3.0 to 25.4.0

Commits

Updates tiktoken from 0.11.0 to 0.12.0

Changelog

Sourced from tiktoken's changelog.

[v0.12.0]

  • Build wheels for Python 3.14
  • Build musllinux aarch64 wheels
  • Support for free-threaded Python
  • Update version of pyo3 and rustc-hash
  • Avoid use of blobfile for reading local files
  • Recognise gpt-5 model identifier
  • Minor performance improvement for file reading
Commits

Updates rich from 14.0.0 to 14.2.0

Release notes

Sourced from rich's releases.

The Easy as Pi release

This release bumps Python compatibility to the just-released Python 3.14.

[14.2.0] - 2025-10-09

Changed

The Lively Release

Live objects may now be nested. Previously a progress bar inside another progress context would fail. See the changelog below for this and other changes.

[14.1.0] - 2025-06-25

Changed

Fixed

Added

  • Added TTY_INTERACTIVE environment variable to force interactive mode off or on Textualize/rich#3777
Changelog

Sourced from rich's changelog.

[14.2.0] - 2025-10-09

Changed

[14.1.0] - 2025-06-25

Changed

Fixed

Added

  • Added TTY_INTERACTIVE environment variable to force interactive mode off or on Textualize/rich#3777
Commits

Updates schema from 0.7.7 to 0.7.8

Changelog

Sourced from schema's changelog.

Changelog

Unreleased

Features

  • [JSON Schema] Add title for Literal. [Denis Blanchette]

Fixes

  • JSON Schema missing title in subschemas. [Denis Blanchette]

  • [JSON Schema] Type "null" should be string. [Denis Blanchette]

  • Ruff format. [Denis Blanchette]

  • Include py.typed module when building package. [Stavros Korokithakis]

Commits
  • 7434a6b build: Release v0.7.8
  • 3e06d37 Merge pull request #332 from coveord/fix/json-schema-title-in-sub-schemas
  • 481f2ee fix: JSON Schema missing title in subschemas
  • c3aea90 Merge pull request #331 from coveord/fix/type-null
  • acbb13f fix: [JSON Schema] Type "null" should be string
  • abe66fd Merge pull request #4 from coveord/feat/add-title-for-literal
  • 8f132c4 Merge pull request #330 from coveord/feat/add-title-for-literal
  • 003595f fix: ruff format
  • 8294273 feat: [JSON Schema] Add title for Literal
  • 24a3045 ci: Sort imports
  • Additional commits viewable in compare view

Updates pyyaml from 6.0.2 to 6.0.3

Release notes

Sourced from pyyaml's releases.

6.0.3

What's Changed

  • Support for Python 3.14 and free-threading (experimental).

Full Changelog: yaml/pyyaml@6.0.2...6.0.3

Changelog

Sourced from pyyaml's changelog.

6.0.3 (2025-09-25)

  • yaml/pyyaml#864 -- Support for Python 3.14 and free-threading (experimental)
Commits

Updates requests from 2.32.3 to 2.32.5

Release notes

Sourced from requests's releases.

v2.32.5

2.32.5 (2025-08-18)

Bugfixes

  • The SSLContext caching feature originally introduced in 2.32.0 has created a new class of issues in Requests that have had negative impact across a number of use cases. The Requests team has decided to revert this feature as long term maintenance of it is proving to be unsustainable in its current iteration.

Deprecations

  • Added support for Python 3.14.
  • Dropped support for Python 3.8 following its end of support.

v2.32.4

2.32.4 (2025-06-10)

Security

  • CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file. (#6965)

Improvements

  • Numerous documentation improvements

Deprecations

  • Added support for pypy 3.11 for Linux and macOS. (#6926)
  • Dropped support for pypy 3.9 following its end of support. (#6926)
Changelog

Sourced from requests's changelog.

2.32.5 (2025-08-18)

Bugfixes

  • The SSLContext caching feature originally introduced in 2.32.0 has created a new class of issues in Requests that have had negative impact across a number of use cases. The Requests team has decided to revert this feature as long term maintenance of it is proving to be unsustainable in its current iteration.

Deprecations

  • Added support for Python 3.14.
  • Dropped support for Python 3.8 following its end of support.

2.32.4 (2025-06-10)

Security

  • CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong hostname/machine from a netrc file.

Improvements

  • Numerous documentation improvements

Deprecations

  • Added support for pypy 3.11 for Linux and macOS.
  • Dropped support for pypy 3.9 following its end of support.
Commits
  • b25c87d v2.32.5
  • 131e506 Merge pull request #7010 from psf/dependabot/github_actions/actions/checkout-...
  • b336cb2 Bump actions/checkout from 4.2.0 to 5.0.0
  • 46e939b Update publish workflow to use artifact-id instead of name
  • 4b9c546 Merge pull request #6999 from psf/dependabot/github_actions/step-security/har...
  • 7618dbe Bump step-security/harden-runner from 2.12.0 to 2.13.0
  • 2edca11 Add support for Python 3.14 and drop support for Python 3.8 (#6993)
  • fec96cd Update Makefile rules (#6996)
  • d58d8aa docs: clarify timeout parameter uses seconds in Session.request (#6994)
  • 91a3eab Bump github/codeql-action from 3.28.5 to 3.29.0
  • Additional commits viewable in compare view

Updates pydantic from 2.11.4 to 2.12.5

Release notes

Sourced from pydantic's releases.

v2.12.5 2025-11-26

v2.12.5 (2025-11-26)

This is the fifth 2.12 patch release, addressing an issue with the MISSING sentinel and providing several documentation improvements.

The next 2.13 minor release will be published in a couple weeks, and will include a new polymorphic serialization feature addressing the remaining unexpected changes to the serialize as any behavior.

  • Fix pickle error when using model_construct() on a model with MISSING as a default value by @​ornariece in #12522.
  • Several updates to the documentation by @​Viicos.

Full Changelog: pydantic/pydantic@v2.12.4...v2.12.5

v2.12.4 2025-11-05

v2.12.4 (2025-11-05)

This is the fourth 2.12 patch release, fixing more regressions, and reverting a change in the build() method of the AnyUrl and Dsn types.

This patch release also fixes an issue with the serialization of IP address types, when serialize_as_any is used. The next patch release will try to address the remaining issues with serialize as any behavior by introducing a new polymorphic serialization feature, that should be used in most cases in place of serialize as any.

Full Changelog: pydantic/pydantic@v2.12.3...v2.12.4

v2.12.3 2025-10-17

v2.12.3 (2025-10-17)

What's Changed

This is the third 2.13 patch release, fixing issues related to the FieldInfo class, and reverting a change to the supported after model validator function signatures.

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.12.5 (2025-11-26)

GitHub release

This is the fifth 2.12 patch release, addressing an issue with the MISSING sentinel and providing several documentation improvements.

The next 2.13 minor release will be published in a couple weeks, and will include a new polymorphic serialization feature addressing the remaining unexpected changes to the serialize as any behavior.

  • Fix pickle error when using model_construct() on a model with MISSING as a default value by @​ornariece in #12522.
  • Several updates to the documentation by @​Viicos.

v2.12.4 (2025-11-05)

GitHub release

This is the fourth 2.12 patch release, fixing more regressions, and reverting a change in the build() method of the AnyUrl and Dsn types.

This patch release also fixes an issue with the serialization of IP address types, when serialize_as_any is used. The next patch release will try to address the remaining issues with serialize as any behavior by introducing a new polymorphic serialization feature, that should be used in most cases in place of serialize as any.

v2.12.3 (2025-10-17)

GitHub release

... (truncated)

Commits
  • bd2d0dd Prepare release v2.12.5
  • 7d0302e Document security implications when using create_model()
  • e9ef980 Fix typo in Standard Library Types documentation
  • f2c20c0 Add pydantic-docs dev dependency, make use of versioning blocks
  • a76c1aa Update documentation about JSON Schema
  • 8cbc72c Add documentation about custom __init__()
  • 99eba59 Add additional test for FieldInfo.get_default()
  • c710769 Special case MISSING sentinel in smart_deepcopy()
  • 20a9d77 Do not delete mock validator/serializer in rebuild_dataclass()
  • c86515a Update parts of the model and revalidate_instances documentation
  • Additional commits viewable in compare view

Updates pip from 25.1.1 to 25.3

Changelog

Sourced from pip's changelog.

25.3 (2025-10-24)

Deprecations and Removals

  • Remove support for the legacy setup.py develop editable method in setuptools editable installs; setuptools >= 64 is now required. ([#11457](https://github.com/pypa/pip/issues/11457) <https://github.com/pypa/pip/issues/11457>_)

  • Remove the deprecated --global-option and --build-option. --config-setting is now the only way to pass options to the build backend. ([#11859](https://github.com/pypa/pip/issues/11859) <https://github.com/pypa/pip/issues/11859>_)

  • Deprecate the PIP_CONSTRAINT environment variable for specifying build constraints.

    Use the --build-constraint option or the PIP_BUILD_CONSTRAINT environment variable instead. When build constraints are used, PIP_CONSTRAINT no longer affects isolated build environments. To enable this behavior without specifying any build constraints, use --use-feature=build-constraint. ([#13534](https://github.com/pypa/pip/issues/13534) <https://github.com/pypa/pip/issues/13534>_)

  • Remove support for non-standard legacy wheel filenames. ([#13581](https://github.com/pypa/pip/issues/13581) <https://github.com/pypa/pip/issues/13581>_)

  • Remove support for the deprecated setup.py bdist_wheel mechanism. Consequently, --use-pep517 is now always on, and --no-use-pep517 has been removed. ([#6334](https://github.com/pypa/pip/issues/6334) <https://github.com/pypa/pip/issues/6334>_)

Features

  • When :pep:658 metadata is available, full distribution files are no longer downloaded when using pip lock or pip install --dry-run. ([#12603](https://github.com/pypa/pip/issues/12603) <https://github.com/pypa/pip/issues/12603>_)
  • Add support for installing an editable requirement written as a Direct URL (PackageName @ URL). ([#13495](https://github.com/pypa/pip/issues/13495) <https://github.com/pypa/pip/issues/13495>_)
  • Add support for build constraints via the --build-constraint option. This allows constraining the versions of packages used during the build process (e.g., setuptools) without affecting the final installation. ([#13534](https://github.com/pypa/pip/issues/13534) <https://github.com/pypa/pip/issues/13534>_)
  • On ResolutionImpossible errors, include a note about causes with no candidates. ([#13588](https://github.com/pypa/pip/issues/13588) <https://github.com/pypa/pip/issues/13588>_)
  • Building pip itself from source now uses flit-core instead of setuptools. This does not affect how pip installs or builds packages you use. ([#13473](https://github.com/pypa/pip/issues/13473) <https://github.com/pypa/pip/issues/13473>_)

Bug Fixes

  • Handle malformed Version metadata entries and show a sensible error message instead of crashing. ([#13443](https://github.com/pypa/pip/issues/13443) <https://github.com/pypa/pip/issues/13443>_)
  • Permit spaces between a filepath and extras in an install requirement. ([#13523](https://github.com/pypa/pip/issues/13523) <https://github.com/pypa/pip/issues/13523>_)
  • Ensure the self-check files in the cache have the same permissions as the rest of the cache. ([#13528](https://github.com/pypa/pip/issues/13528) <https://github.com/pypa/pip/issues/13528>_)
  • Avoid concurrency issues and improve performance when caching locally built wheels, especially when the temporary build directory is on a different filesystem than the cache. The wheel directory passed to the build backend is now a temporary subdirectory inside the cache directory. ([#13540](https://github.com/pypa/pip/issues/13540) <https://github.com/pypa/pip/issues/13540>_)
  • Include relevant user-supplied constraints in logs when reporting dependency conflicts. ([#13545](https://github.com/pypa/pip/issues/13545) <https://github.com/pypa/pip/issues/13545>_)
  • Fix a regression in configuration parsing that was turning a single value into a list and thus leading to a validation error. ([#13548](https://github.com/pypa/pip/issues/13548) <https://github.com/pypa/pip/issues/13548>_)
  • For Python versions that do not support :pep:706, pip will now raise an installation error for a source distribution when it includes a symlink that points outside the source distribution archive. ([#13550](https://github.com/pypa/pip/issues/13550) <https://github.com/pypa/pip/issues/13550>_)
  • Prevent --user installs if site.ENABLE_USER_SITE is set to False. ([#8794](https://github.com/pypa/pip/issues/8794) <https://github.com/pypa/pip/issues/8794>_)

... (truncated)

Commits
  • a520693 Bump for release
  • 0f2973e Fix up authors by adding entry to .mailmap
  • 87828dc Update AUTHORS.txt
  • ce6a38c Merge pull request #13628 from sbidoul/imp-doc-pep517-sbi
  • ee16c81 Merge pull request #13629 from notatallshaw/bump-gone_in="25.3"
  • 3e227aa Bump gone_in="25.3"
  • 4ad1828 Merge pull request #13495 from ichard26/feat/direct-editables
  • 66ded3b Merge pull request #13570 from ShubhamNagure/fix-constraint-reporting-13545
  • 67e8ac2 Merge pull request #13588 from notatallshaw/hint-on-resolution-impossible-whe...
  • 990ca8a Merge pull request #8796 from pelson/honour_user_site
  • Additional commits viewable in compare view

Updates json-schema-to-pydantic from 0.4.6 to 0.4.7

Release notes

Sourced from json-schema-to-pydantic's releases.

v0.4.7

What's Changed

Full Changelog: richard-gyiko/json-schema-to-pydantic@v0.4.6...v0.4.7

Commits
  • db2d671 Merge pull request #31 from richard-gyiko/copilot/add-array-support-top-level
  • 74a5053 Update src/json_schema_to_pydantic/model_builder.py
  • c4532a4 Add array properties to STANDARD_MODEL_PROPERTIES and test for json_schema_extra
  • 4122443 Add support for top-level array schemas using RootModel
  • 7119af0 Initial plan
  • See full diff in compare view

Updates cohere from 5.15.0 to 5.20.1

Release notes

Sourced from cohere's releases.

5.20.1

What's Changed

Full Changelog: cohere-ai/cohere-python@5.20.0...5.20.1

5.20.0

Add priority parameter to chat, embed and rerank

Full Changelog: cohere-ai/cohere-python@5.19.0...5.20.0

5.19.0

Adds experimental support for Batches API

5.18.0

Fixes the issue with the thinking object described in cohere-ai/cohere-python#692

5.17.0

What's Changed

Full Changelog: cohere-ai/cohere-python@5.16.3...5.17.0

5.16.3

No release notes provided.

5.16.2

No release notes provided.

5.16.1

What's Changed

Full Changelog: cohere-ai/cohere-python@5.16.0...5.16.1

5.16.0

What's Changed

Full Changelog: cohere-ai/cohere-python@5.15.0...5.16.0

Commits

Updates anthropic from 0.51.0 to 0.75.0

Release notes

Sourced from anthropic's releases.

v0.75.0

0.75.0 (2025-11-24)

Full Changelog: v0.74.1...v0.75.0

Features

  • api: adds support for Claude Opus 4.5, Effort, Advance Tool Use Features, Autocompaction, and Computer Use v5 (5c3e633)

Bug Fixes

Chores

v0.74.1

0.74.1 (2025-11-19)

Full Changelog: v0.74.0...v0.74.1

Bug Fixes

  • structured outputs: use correct beta header (e90d347)

Chores

  • examples: update model references (e09461d)

v0.74.0

0.74.0 (2025-11-18)

Full Changelog: v0.73.0...v0.74.0

Features

Bug Fixes

  • examples/memory: properly add assistant_content to messages (#1049) (9c7141b)
  • use posix paths in file collection for cross-platform compatibility (d9c6f40), closes #1051

Chores

... (truncated)

Changelog

Sourced from anthropic's changelog.

0.75.0 (2025-11-24)

Full Changelog: v0.74.1...v0.75.0

Features

  • api: adds support for Claude Opus 4.5, Effort, Advance Tool Use Features, Autocompaction, and Computer Use v5 (5c3e633)

Bug Fixes

Chores

0.74.1 (2025-11-19)

Full Changelog: v0.74.0...v0.74.1

Bug Fixes

  • structured outputs: use correct beta header (e90d347)

Chores

  • examples: update model references (e09461d)

0.74.0 (2025-11-18)

Full Changelog: v0.73.0...v0.74.0

Features

Bug Fixes

  • examples/memory: properly add assistant_content to messages (#1049) (9c7141b)
  • use posix paths in file collection for cross-platform compatibility (d9c6f40), closes #1051

Chores

  • internal: remove unnecessary wrapper around external snapshots (19eceac)

... (truncated)

Commits
  • 2eb9415 release: 0.75.0
  • c243fb4 fix(internal): small fixes
  • 115665e chore: fix lint issues
  • 9843a8e feat(api): adds support for Claude Opus 4.5, Effort, Advance Tool Use Feature...
  • c47c5bd release: 0.74.1
  • de22acc chore(examples): update model references
  • c94119b fix(structured outputs): use correct beta header
  • 49fe6ed release: 0.74.0
  • ac3c167 fix(examples/memory): properly add assistant_content to messages (#1049)
  • 2a35fc0 docs: explain snapshot update process (#1040)
  • Additional commits viewable in compare view

Updates transformers from 4.51.3 to 4.57.3

Release notes

Sourced from transformers's releases.

Patch release v4.57.3

There was a hidden bug when loading models with local_files_only=True and a typo related to the recent patch.

The main fix is: huggingface/transformers@b605555.

We are really sorry that this slipped through, our CIs just did not catch it.

As it affects a lot of users we are gonna yank the previous release

Patch Release v4.57.2

This patch most notably fixes an issue on some Mistral tokenizers. It contains the following commits:

  • Add AutoTokenizer mapping for mistral3 and ministral (#42198)
  • Auto convert tekken.json (#42299)
  • fix tekken pattern matching (#42363)
  • Check model inputs - hidden states (#40994)
  • Remove invalid @staticmethod from module-level get_device_and_memory_breakdown (#41747)

Patch release v4.57.1

This patch most notably fixes an issue with an optional dependency (optax), which resulted in parsing errors with poetry. It contains the following fixes:

v4.57.0: Qwen3-Next, Vault Gemma, Qwen3 VL, LongCat Flash, Flex OLMO, LFM2 VL, BLT, Qwen3 OMNI MoE, Parakeet, EdgeTAM, OLMO3

New model additions

Qwen3 Next

The Qwen3-Next series represents the Qwen team's next-generation foundation models, optimized for extreme context length and large-scale parameter efficiency. The series introduces a suite of architectural innovations designed to maximize performance while minimizing computational cost:

  • Hybrid Attention: Replaces standard attention with the combination of Gated DeltaNet and Gated Attention, enabling efficient context modeling.
  • High-Sparsity MoE: Achieves an extreme low activation ratio as 1:50 in MoE layers — drastically reducing FLOPs per token while preserving model capacity.
  • Multi-Token Prediction(MTP): Boosts pretraining model performance, and accelerates inference.
  • Other Optimizations: Includes techniques such as zero-centered and weight-decayed layernorm, Gated Attention, and other stabilizing enhancements for robust training.

Built on this architecture, they trained and open-sourced Qwen3-Next-80B-A3B — 80B total parameters, only 3B active — achieving extreme sparsity and efficiency.

Despite its ultra-efficiency, it outperforms Qwen3-32B on downstream tasks — while requiring less than 1/10 of the training cost. Moreover, it delivers over 10x higher inference throughput than Qwen3-32B when handling contexts longer than 32K tokens.

For more details, please visit their blog Qwen3-Next (blog post).

... (truncated)

Commits

Updates boto3 from 1.38.18 to 1.42.14

Commits
  • 91efece Merge branch 'release-1.42.14'
  • a6997ea Bumping version to 1.42.14
  • eca895a Add changelog entries from botocore
  • b4d31fc Merge branch 'release-1.42.13'
  • 7d3989a Merge branch 'release-1.42.13' into develop
  • 3489c27 Bumping version to 1.42.13
  • 09989dc Add changelog entries from botocore
  • 46693ea Merge branch 'release-1.42.12'
  • aaac01f Merge branch 'release-1.42.12' into develop
  • 2c3c90d Bumping version to 1.42.12
  • Additional commits viewable in compare view

Updates google-generativeai from 0.8.5 to 0.8.6

Release notes

Sourced from google-generativeai's releases.

Archived

What's Changed

Add a warning message on import telling people that this package is archived.

Full Changelog: google-gemini/deprecated-generative-ai-python@v0.8.5...v0.8.6

Commits

Updates ollama from 0.4.8...

Description has been truncated

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Dec 22, 2025
@dependabot dependabot bot force-pushed the dependabot/uv/production-dependencies-0067f3b106 branch from eb2ddc4 to 3889ba2 Compare January 5, 2026 17:25
@collindutter collindutter enabled auto-merge January 7, 2026 18:03
@dependabot dependabot bot force-pushed the dependabot/uv/production-dependencies-0067f3b106 branch 2 times, most recently from 69489dd to 5c08ab5 Compare January 13, 2026 21:48
@dependabot dependabot bot force-pushed the dependabot/uv/production-dependencies-0067f3b106 branch from 5c08ab5 to 753f4bd Compare January 21, 2026 12:36
…38 updates

Bumps the production-dependencies group with 34 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [attrs](https://github.com/sponsors/hynek) | `25.3.0` | `25.4.0` |
| [tiktoken](https://github.com/openai/tiktoken) | `0.11.0` | `0.12.0` |
| [rich](https://github.com/Textualize/rich) | `14.0.0` | `14.2.0` |
| [schema](https://github.com/keleshev/schema) | `0.7.7` | `0.7.8` |
| [pyyaml](https://github.com/yaml/pyyaml) | `6.0.2` | `6.0.3` |
| [requests](https://github.com/psf/requests) | `2.32.3` | `2.32.5` |
| [pydantic](https://github.com/pydantic/pydantic) | `2.11.4` | `2.12.5` |
| [pip](https://github.com/pypa/pip) | `25.1.1` | `25.3` |
| [json-schema-to-pydantic](https://github.com/richard-gyiko/json-schema-to-pydantic) | `0.4.6` | `0.4.7` |
| [cohere](https://github.com/cohere-ai/cohere-python) | `5.15.0` | `5.20.1` |
| [anthropic](https://github.com/anthropics/anthropic-sdk-python) | `0.51.0` | `0.75.0` |
| [transformers](https://github.com/huggingface/transformers) | `4.51.3` | `4.57.3` |
| [boto3](https://github.com/boto/boto3) | `1.38.18` | `1.42.14` |
| [google-generativeai](https://github.com/google/generative-ai-python) | `0.8.5` | `0.8.6` |
| [ollama](https://github.com/ollama/ollama-python) | `0.4.8` | `0.6.1` |
| [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) | `2.0.41` | `2.0.45` |
| [snowflake-sqlalchemy](https://github.com/snowflakedb/snowflake-sqlalchemy) | `1.7.3` | `1.8.2` |
| snowflake | `1.5.0` | `1.8.0` |
| [marqo](https://github.com/marqo-ai/marqo) | `3.13.0` | `3.18.0` |
| [pymongo](https://github.com/mongodb/mongo-python-driver) | `4.12.1` | `4.15.5` |
| [pgvector](https://github.com/pgvector/pgvector-python) | `0.4.1` | `0.4.2` |
| [psycopg2-binary](https://github.com/psycopg/psycopg2) | `2.9.10` | `2.9.11` |
| [qdrant-client](https://github.com/qdrant/qdrant-client) | `1.14.2` | `1.16.1` |
| [astrapy](https://github.com/datastax/astrapy) | `2.0.1` | `2.1.0` |
| voyageai | `0.3.2` | `0.3.7` |
| [playwright](https://github.com/microsoft/playwright-python) | `1.52.0` | `1.57.0` |
| [beautifulsoup4](https://www.crummy.com/software/BeautifulSoup/bs4/) | `4.13.4` | `4.14.3` |
| [markdownify](https://github.com/matthewwithanm/python-markdownify) | `1.1.0` | `1.2.2` |
| [duckduckgo-search](https://github.com/deedy5/duckduckgo_search) | `8.0.2` | `8.1.1` |
| [tavily-python](https://github.com/tavily-ai/tavily-python) | `0.7.2` | `0.7.17` |
| [opentelemetry-sdk](https://github.com/open-telemetry/opentelemetry-python) | `1.33.1` | `1.39.1` |
| [diffusers](https://github.com/huggingface/diffusers) | `0.33.1` | `0.36.0` |
| [mail-parser](https://github.com/SpamScope/mail-parser) | `4.1.2` | `4.1.4` |
| [pandas](https://github.com/pandas-dev/pandas) | `2.2.3` | `2.3.3` |



Updates `attrs` from 25.3.0 to 25.4.0
- [Commits](https://github.com/sponsors/hynek/commits)

Updates `tiktoken` from 0.11.0 to 0.12.0
- [Release notes](https://github.com/openai/tiktoken/releases)
- [Changelog](https://github.com/openai/tiktoken/blob/main/CHANGELOG.md)
- [Commits](openai/tiktoken@0.11.0...0.12.0)

Updates `rich` from 14.0.0 to 14.2.0
- [Release notes](https://github.com/Textualize/rich/releases)
- [Changelog](https://github.com/Textualize/rich/blob/master/CHANGELOG.md)
- [Commits](Textualize/rich@v14.0.0...v14.2.0)

Updates `schema` from 0.7.7 to 0.7.8
- [Release notes](https://github.com/keleshev/schema/releases)
- [Changelog](https://github.com/keleshev/schema/blob/master/CHANGELOG.md)
- [Commits](keleshev/schema@v0.7.7...v0.7.8)

Updates `pyyaml` from 6.0.2 to 6.0.3
- [Release notes](https://github.com/yaml/pyyaml/releases)
- [Changelog](https://github.com/yaml/pyyaml/blob/6.0.3/CHANGES)
- [Commits](yaml/pyyaml@6.0.2...6.0.3)

Updates `requests` from 2.32.3 to 2.32.5
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.32.3...v2.32.5)

Updates `pydantic` from 2.11.4 to 2.12.5
- [Release notes](https://github.com/pydantic/pydantic/releases)
- [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md)
- [Commits](pydantic/pydantic@v2.11.4...v2.12.5)

Updates `pip` from 25.1.1 to 25.3
- [Changelog](https://github.com/pypa/pip/blob/main/NEWS.rst)
- [Commits](pypa/pip@25.1.1...25.3)

Updates `json-schema-to-pydantic` from 0.4.6 to 0.4.7
- [Release notes](https://github.com/richard-gyiko/json-schema-to-pydantic/releases)
- [Commits](richard-gyiko/json-schema-to-pydantic@v0.4.6...v0.4.7)

Updates `cohere` from 5.15.0 to 5.20.1
- [Release notes](https://github.com/cohere-ai/cohere-python/releases)
- [Commits](cohere-ai/cohere-python@5.15.0...5.20.1)

Updates `anthropic` from 0.51.0 to 0.75.0
- [Release notes](https://github.com/anthropics/anthropic-sdk-python/releases)
- [Changelog](https://github.com/anthropics/anthropic-sdk-python/blob/main/CHANGELOG.md)
- [Commits](anthropics/anthropic-sdk-python@v0.51.0...v0.75.0)

Updates `transformers` from 4.51.3 to 4.57.3
- [Release notes](https://github.com/huggingface/transformers/releases)
- [Commits](huggingface/transformers@v4.51.3...v4.57.3)

Updates `boto3` from 1.38.18 to 1.42.14
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.38.18...1.42.14)

Updates `google-generativeai` from 0.8.5 to 0.8.6
- [Release notes](https://github.com/google/generative-ai-python/releases)
- [Changelog](https://github.com/google-gemini/deprecated-generative-ai-python/blob/main/RELEASE.md)
- [Commits](google-gemini/deprecated-generative-ai-python@v0.8.5...v0.8.6)

Updates `ollama` from 0.4.8 to 0.6.1
- [Release notes](https://github.com/ollama/ollama-python/releases)
- [Commits](ollama/ollama-python@v0.4.8...v0.6.1)

Updates `sqlalchemy` from 2.0.41 to 2.0.45
- [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases)
- [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst)
- [Commits](https://github.com/sqlalchemy/sqlalchemy/commits)

Updates `snowflake-sqlalchemy` from 1.7.3 to 1.8.2
- [Release notes](https://github.com/snowflakedb/snowflake-sqlalchemy/releases)
- [Commits](snowflakedb/snowflake-sqlalchemy@v1.7.3...v1.8.2)

Updates `snowflake` from 1.5.0 to 1.8.0

Updates `marqo` from 3.13.0 to 3.18.0
- [Release notes](https://github.com/marqo-ai/marqo/releases)
- [Changelog](https://github.com/marqo-ai/marqo/blob/mainline/RELEASE.md)
- [Commits](https://github.com/marqo-ai/marqo/commits)

Updates `pymongo` from 4.12.1 to 4.15.5
- [Release notes](https://github.com/mongodb/mongo-python-driver/releases)
- [Changelog](https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst)
- [Commits](mongodb/mongo-python-driver@4.12.1...4.15.5)

Updates `pgvector` from 0.4.1 to 0.4.2
- [Changelog](https://github.com/pgvector/pgvector-python/blob/master/CHANGELOG.md)
- [Commits](pgvector/pgvector-python@v0.4.1...v0.4.2)

Updates `psycopg2-binary` from 2.9.10 to 2.9.11
- [Changelog](https://github.com/psycopg/psycopg2/blob/master/NEWS)
- [Commits](psycopg/psycopg2@2.9.10...2.9.11)

Updates `qdrant-client` from 1.14.2 to 1.16.1
- [Release notes](https://github.com/qdrant/qdrant-client/releases)
- [Commits](qdrant/qdrant-client@v1.14.2...v1.16.1)

Updates `astrapy` from 2.0.1 to 2.1.0
- [Release notes](https://github.com/datastax/astrapy/releases)
- [Changelog](https://github.com/datastax/astrapy/blob/main/CHANGES)
- [Commits](datastax/astrapy@v2.0.1...v2.1.0)

Updates `voyageai` from 0.3.2 to 0.3.7

Updates `playwright` from 1.52.0 to 1.57.0
- [Release notes](https://github.com/microsoft/playwright-python/releases)
- [Commits](microsoft/playwright-python@v1.52.0...v1.57.0)

Updates `beautifulsoup4` from 4.13.4 to 4.14.3

Updates `markdownify` from 1.1.0 to 1.2.2
- [Release notes](https://github.com/matthewwithanm/python-markdownify/releases)
- [Commits](matthewwithanm/python-markdownify@1.1.0...1.2.2)

Updates `duckduckgo-search` from 8.0.2 to 8.1.1
- [Release notes](https://github.com/deedy5/duckduckgo_search/releases)
- [Commits](deedy5/ddgs@v8.0.2...v8.1.1)

Updates `tavily-python` from 0.7.2 to 0.7.17
- [Commits](https://github.com/tavily-ai/tavily-python/commits)

Updates `opentelemetry-sdk` from 1.33.1 to 1.39.1
- [Release notes](https://github.com/open-telemetry/opentelemetry-python/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-python/blob/v1.39.1/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-python@v1.33.1...v1.39.1)

Updates `opentelemetry-api` from 1.33.1 to 1.39.1
- [Release notes](https://github.com/open-telemetry/opentelemetry-python/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-python/blob/v1.39.1/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-python@v1.33.1...v1.39.1)

Updates `opentelemetry-instrumentation` from 0.54b1 to 0.60b1
- [Release notes](https://github.com/open-telemetry/opentelemetry-python-contrib/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-python-contrib/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-python-contrib/commits)

Updates `opentelemetry-instrumentation-threading` from 0.54b1 to 0.60b1
- [Release notes](https://github.com/open-telemetry/opentelemetry-python-contrib/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-python-contrib/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-python-contrib/commits)

Updates `opentelemetry-exporter-otlp-proto-http` from 1.33.1 to 1.39.1
- [Release notes](https://github.com/open-telemetry/opentelemetry-python/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-python/blob/v1.39.1/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-python@v1.33.1...v1.39.1)

Updates `diffusers` from 0.33.1 to 0.36.0
- [Release notes](https://github.com/huggingface/diffusers/releases)
- [Commits](huggingface/diffusers@v0.33.1...v0.36.0)

Updates `mail-parser` from 4.1.2 to 4.1.4
- [Release notes](https://github.com/SpamScope/mail-parser/releases)
- [Commits](SpamScope/mail-parser@4.1.2...4.1.4)

Updates `pandas` from 2.2.3 to 2.3.3
- [Release notes](https://github.com/pandas-dev/pandas/releases)
- [Commits](pandas-dev/pandas@v2.2.3...v2.3.3)

---
updated-dependencies:
- dependency-name: attrs
  dependency-version: 25.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: tiktoken
  dependency-version: 0.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: rich
  dependency-version: 14.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: schema
  dependency-version: 0.7.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: pyyaml
  dependency-version: 6.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: requests
  dependency-version: 2.32.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: pydantic
  dependency-version: 2.12.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: pip
  dependency-version: '25.3'
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: json-schema-to-pydantic
  dependency-version: 0.4.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: cohere
  dependency-version: 5.20.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: anthropic
  dependency-version: 0.75.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: transformers
  dependency-version: 4.57.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: boto3
  dependency-version: 1.42.14
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: google-generativeai
  dependency-version: 0.8.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: ollama
  dependency-version: 0.6.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: sqlalchemy
  dependency-version: 2.0.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: snowflake-sqlalchemy
  dependency-version: 1.8.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: snowflake
  dependency-version: 1.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: marqo
  dependency-version: 3.18.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: pymongo
  dependency-version: 4.15.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: pgvector
  dependency-version: 0.4.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: psycopg2-binary
  dependency-version: 2.9.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: qdrant-client
  dependency-version: 1.16.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: astrapy
  dependency-version: 2.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: voyageai
  dependency-version: 0.3.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: playwright
  dependency-version: 1.57.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: beautifulsoup4
  dependency-version: 4.14.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: markdownify
  dependency-version: 1.2.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: duckduckgo-search
  dependency-version: 8.1.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: tavily-python
  dependency-version: 0.7.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: opentelemetry-sdk
  dependency-version: 1.39.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: opentelemetry-api
  dependency-version: 1.39.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: opentelemetry-instrumentation
  dependency-version: 0.60b1
  dependency-type: direct:production
  dependency-group: production-dependencies
- dependency-name: opentelemetry-instrumentation-threading
  dependency-version: 0.60b1
  dependency-type: direct:production
  dependency-group: production-dependencies
- dependency-name: opentelemetry-exporter-otlp-proto-http
  dependency-version: 1.39.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: diffusers
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: mail-parser
  dependency-version: 4.1.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: pandas
  dependency-version: 2.3.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/uv/production-dependencies-0067f3b106 branch from 753f4bd to f8c1b95 Compare January 21, 2026 12:53
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 21, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jan 21, 2026
auto-merge was automatically disabled January 21, 2026 16:14

Pull request was closed

@dependabot dependabot bot deleted the dependabot/uv/production-dependencies-0067f3b106 branch January 21, 2026 16:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant