chore(deps): update all dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Pending	Age	Confidence
ansible/actions	repository	major	v0.5.1 → v1.1.2
ansible/team-devtools	repository	minor	v26.2.0 → v26.4.0
astral-sh/uv-pre-commit	repository	minor	0.10.7 → 0.11.7
biomejs/pre-commit	repository	patch	v2.4.4 → v2.4.12
build (changelog)	dependency-groups	patch	1.4.2 → 1.4.3
mkdocs-ansible (changelog)	dependency-groups	major	25.6.2 → 26.4.0
molecule (changelog)	dependency-groups	minor	26.3.0 → 26.4.0
mypy (changelog)	dependency-groups	patch	1.20.0 → 1.20.1
prek (source, changelog)	dependency-groups	patch	0.3.8 → 0.3.9
ruff (source, changelog)	dependency-groups	patch	0.15.8 → 0.15.11
tombi	dependency-groups	patch	0.9.13 → 0.9.18	0.9.19
tox (changelog)	dependency-groups	minor	4.52.0 → 4.53.0
types-pyyaml (changelog)	dependency-groups	patch	6.0.12.20250915 → 6.0.12.20260408

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

---

Release Notes

ansible/actions (ansible/actions)

v1.1.2

Compare Source

Fixes

• fix: make renovate and md hook use version from action (#​112) @​ssbarnea
• fix: force use of newer node (#​121) @​ssbarnea

Maintenance

• chore(deps): update all dependencies pep621 (#​120) @​renovate[bot]
• chore(deps): update all dependencies (#​119) @​renovate[bot]

v1.1.1

Compare Source

Fixes

• fix: address issue with shellcheck calling (#​118) @​ssbarnea

Maintenance

• chore(deps): update all dependencies pep621 (#​117) @​renovate[bot]
• chore(deps): update all dependencies (#​116) @​renovate[bot]
• chore(deps): update dependencies (#​115) @​renovate[bot]
• chore(deps): update all dependencies pep621 (#​114) @​renovate[bot]
• chore(deps): update all dependencies (#​113) @​renovate[bot]

v1.1.0

Compare Source

Features

• feat: add pyright hook definition (#​111) @​ssbarnea

Fixes

• fix: display gitleaks version before calling it (#​108) @​ssbarnea
• fix: allow renovate to create up to 3 PRs (#​107) @​ssbarnea

Maintenance

• chore(deps): update actions/download-artifact action (#​109) @​renovate[bot]
• chore(deps): update all dependencies pep621 (#​110) @​renovate[bot]
• chore(deps): update all dependencies (#​106) @​renovate[bot]

v1.0.1

Compare Source

Fixes

• fix: configure renovate to bump minimal versions on security alerts (#​104) @​ssbarnea
• fix: make codecov curl validation retry (#​103) @​ssbarnea
• fix: run codespell as a tool (#​102) @​ssbarnea

Maintenance

• chore(deps): update all dependencies to bbbca2d (#​100) @​renovate[bot]

v1.0.0

Compare Source

Features

• feat: add pydoclint hook definition (#​99) @​ssbarnea

Fixes

• fix: fix shellcheck hook in local testing (#​98) @​ssbarnea
• fix: use sh when calling system hooks (#​97) @​ssbarnea
• fix: cancel current workflow when autofix is applied (#​95) @​ssbarnea
• fix: prevent prek node install from touching package-lock.json file (#​94) @​ssbarnea

Maintenance

• chore(deps): update all dependencies (#​93) @​renovate[bot]

v1

Compare Source

ansible/team-devtools (ansible/team-devtools)

v26.4.0

Compare Source

Fixes

• fix: stop if unsigned commits are detected (#​438) @​ssbarnea

Maintenance

• chore(deps): update pep621 (#​432) @​renovate[bot]

v26.2.2

Compare Source

Maintenance

• chore: dump event info for test pipeline (#​427) @​ssbarnea
• chore(deps): update all dependencies (#​426) @​renovate[bot]

v26.2.1

Compare Source

Fixes

• fix: make slack notification use markdown (#​424) @​ssbarnea
• fix: make slack alert easier to read (#​423) @​ssbarnea

astral-sh/uv-pre-commit (astral-sh/uv-pre-commit)

v0.11.7

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.11.7

v0.11.6

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.11.6

v0.11.5

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.11.5

v0.11.4

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.11.4

v0.11.3

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.11.3

v0.11.2

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.11.2

v0.11.1

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.11.1

v0.11.0

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.11.0

v0.10.12

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.10.12

v0.10.11

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.10.11

v0.10.10

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.10.10

v0.10.9

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.10.9

v0.10.8

Compare Source

See: https://github.com/astral-sh/uv/releases/tag/0.10.8

biomejs/pre-commit (biomejs/pre-commit)

v2.4.12

Compare Source

v2.4.11

Compare Source

v2.4.10

Compare Source

v2.4.9

Compare Source

v2.4.8

Compare Source

v2.4.7

Compare Source

v2.4.6

Compare Source

v2.4.5

Compare Source

pypa/build (build)

v1.4.3

Compare Source

What's Changed

• 🐛 fix(api): resolve thread-safety races in build API by @​gaborbernat in #​1015
• 🐛 fix(builder): validate backend-path entries exist on disk by @​gaborbernat in #​1016
• test: cover config settings build paths by @​terminalchai in #​992
• Add kind=(step, ) for root messages with * by @​abitrolly in #​973
• fix: correct changelog category ordering by @​gaborbernat in #​1017
• 🐛 fix(cli): show full dependency chain in missing deps error by @​gaborbernat in #​1019
• tests: fully annotate by @​henryiii in #​1020
• chore: lazy imports by @​henryiii in #​1021
• chore: adding more ruff codes by @​henryiii in #​1022
• tests: improve annotations by @​henryiii in #​1023
• 🧪 test(coverage): achieve 100% test coverage by @​gaborbernat in #​1018
• chore: add ruff PT by @​henryiii in #​1025
• chore: add ruff PYI by @​henryiii in #​1026
• chore: add ruff SIM/RET by @​henryiii in #​1028
• 🐛 fix(env): strip PYTHONPATH from isolated builds by @​gaborbernat in #​1024
• chore: use ruff ALL by @​henryiii in #​1029
• 🐛 fix(env): prevent pip credential hang with private indexes by @​gaborbernat in #​1030
• 🐛 fix(check_dependency): verify URL reqs via PEP 610 by @​gaborbernat in #​1027

New Contributors

• @​terminalchai made their first contribution in #​992

Full Changelog: pypa/build@1.4.2...1.4.3

ansible/mkdocs-ansible (mkdocs-ansible)

v26.4.0

Compare Source

Fixes

• fix(deps): bump python dependencies update bump (#​293) @​renovate[bot]
• fix(deps): bump python dependencies update bump (#​290) @​renovate[bot]
• fix(deps): bump python dependencies update pep621 (#​289) @​renovate[bot]
• fix(deps): bump python dependencies update bump (#​288) @​renovate[bot]
• fix(security): update dependencies [SECURITY] (#​286) @​renovate[bot]

Maintenance

• chore(deps): update all dependencies (#​294) @​renovate[bot]
• chore(deps): update all dependencies (#​291) @​renovate[bot]
• chore(deps): update pre-commit hook astral-sh/uv-pre-commit (#​287) @​renovate[bot]

ansible-community/molecule (molecule)

v26.4.0

Compare Source

Fixes

• fix(security): update dependencies [SECURITY] (#​4624) @​renovate[bot]

Maintenance

• chore(deps): update pep621 (#​4622) @​renovate[bot]

python/mypy (mypy)

v1.20.1

Compare Source

• Always disable sync in SQLite cache (Ivan Levkivskyi, PR 21184)
• Temporarily skip few base64 tests (Ivan Levkivskyi, PR 21193)
• Revert dict.__or__ typeshed change (Ivan Levkivskyi, PR 21186)
• Fix narrowing for match case with variadic tuples (Shantanu, PR 21192)
• Avoid narrowing type[T] in type calls (Shantanu, PR 21174)
• Fix regression for catching empty tuple in except (Shantanu, PR 21153)
• Fix reachability for frozenset and dict view narrowing (Shantanu, PR 21151)
• Fix narrowing with chained comparison (Shantanu, PR 21150)
• Avoid narrowing to unreachable at module level (Shantanu, PR 21144)
• Allow dangerous identity comparisons to Any typed variables (Shantanu, PR 21142)
• --warn-unused-config should not be a strict flag (Ivan Levkivskyi, PR 21139)

j178/prek (prek)

v0.3.9

Compare Source

Released on 2026-04-13.

Highlight

prek auto-update is now stricter about pinned revisions and more useful in CI.
It now keeps rev and # frozen: comments in sync, can detect
impostor commits when validating pinned SHAs,
and lets you use prek auto-update --check to fail on both available updates and frozen-ref
mismatches without rewriting the config.

Examples:

$ prek auto-update

# updates revs and repairs stale `# frozen:` comments

$ prek auto-update --freeze

# writes frozen SHAs with matching `# frozen: <tag>` comments

$ prek auto-update --check

# exits non-zero when updates are available, a `# frozen:` comment is stale,
# or a pinned SHA does not belong to the fetched upstream refs

Enhancements

• Check and sync frozen comments during auto-update (#​1896)
• Handle impostor commits in auto-update (#​1919)
• Add experimental language: dotnet support (#​1871)
• Honor repo and worktree core.hooksPath (#​1892)
• Add prek run --no-fail-fast to override config file (#​1859)
• Add forbid-new-submodules as builtin hook (#​1853)
• Clean stale patch files in cache gc (#​1877)
• Display auto-update results by config entry (#​1922)
• Restrict patch directory permissions (#​1876)
• Show tag names in auto-update --freeze output (#​1916)
• Use a bitset for hook stages (#​1860)

Bug fixes

• Canonicalize CWD and GIT_ROOT paths (#​1878)
• Ensure quotes are added for non-string revisions in auto-update (#​1936)

Documentation

• Update docs for case of hooks modifying files with a non-zero exit code (#​1879)

Contributors

• @​RicardoVercetti
• @​nathanjmcdougall
• @​renovate
• @​sadjow
• @​j178

astral-sh/ruff (ruff)

v0.15.11

Compare Source

Released on 2026-04-16.

Preview features

• [ruff] Ignore RUF029 when function is decorated with asynccontextmanager (#​24642)
• [airflow] Implement airflow-xcom-pull-in-template-string (AIR201) (#​23583)
• [flake8-bandit] Fix S103 false positives and negatives in mask analysis (#​24424)

Bug fixes

• [flake8-async] Omit overridden methods for ASYNC109 (#​24648)

Documentation

• [flake8-async] Add override mention to ASYNC109 docs (#​24666)
• Update Neovim config examples to use vim.lsp.config (#​24577)

Contributors

• @​augustelalande
• @​anishgirianish
• @​benberryallwood
• @​charliermarsh
• @​Dev-iL

v0.15.10

Compare Source

Released on 2026-04-09.

Preview features

• [flake8-logging] Allow closures in except handlers (LOG004) (#​24464)
• [flake8-self] Make SLF diagnostics robust to non-self-named variables (#​24281)
• [flake8-simplify] Make the fix for collapsible-if safe in preview (SIM102) (#​24371)

Bug fixes

• Avoid emitting multi-line f-string elements before Python 3.12 (#​24377)
• Avoid syntax error from E502 fixes in f-strings and t-strings (#​24410)
• Strip form feeds from indent passed to dedent_to (#​24381)
• [pyupgrade] Fix panic caused by handling of octals (UP012) (#​24390)
• Reject multi-line f-string elements before Python 3.12 (#​24355)

Rule changes

• [ruff] Treat f-string interpolation as potential side effect (RUF019) (#​24426)

Server

• Add support for custom file extensions (#​24463)

Documentation

• Document adding fixes in CONTRIBUTING.md (#​24393)
• Fix JSON typo in settings example (#​24517)

Contributors

• @​charliermarsh
• @​dylwil3
• @​silverstein
• @​anishgirianish
• @​shizukushq
• @​zanieb
• @​AlexWaygood

v0.15.9

Compare Source

Released on 2026-04-02.

Preview features

• [pyflakes] Flag annotated variable redeclarations as F811 in preview mode (#​24244)
• [ruff] Allow dunder-named assignments in non-strict mode for RUF067 (#​24089)

Bug fixes

• [flake8-errmsg] Avoid shadowing existing msg in fix for EM101 (#​24363)
• [flake8-simplify] Ignore pre-initialization references in SIM113 (#​24235)
• [pycodestyle] Fix W391 fixes for consecutive empty notebook cells (#​24236)
• [pyupgrade] Fix UP008 nested class matching (#​24273)
• [pyupgrade] Ignore strings with string-only escapes (UP012) (#​16058)
• [ruff] RUF072: skip formfeeds on dedent (#​24308)
• [ruff] Avoid re-using symbol in RUF024 fix (#​24316)
• [ruff] Parenthesize expression in RUF050 fix (#​24234)
• Disallow starred expressions as values of starred expressions (#​24280)

Rule changes

• [flake8-simplify] Suppress SIM105 for except* before Python 3.12 (#​23869)
• [pyflakes] Extend F507 to flag %-format strings with zero placeholders (#​24215)
• [pyupgrade] UP018 should detect more unnecessarily wrapped literals (UP018) (#​24093)
• [pyupgrade] Fix UP008 callable scope handling to support lambdas (#​24274)
• [ruff] RUF010: Mark fix as unsafe when it deletes a comment (#​24270)

Formatter

• Add nested-string-quote-style formatting option (#​24312)

Documentation

• [flake8-bugbear] Clarify RUF071 fix safety for non-path string comparisons (#​24149)
• [flake8-type-checking] Clarify import cycle wording for TC001/TC002/TC003 (#​24322)

Other changes

• Avoid rendering fix lines with trailing whitespace after | (#​24343)

Contributors

• @​charliermarsh
• @​MichaReiser
• @​tranhoangtu-it
• @​dylwil3
• @​zsol
• @​renovate
• @​bitloi
• @​danparizher
• @​chinar-amrutkar
• @​second-ed
• @​getehen
• @​Redovo1
• @​matthewlloyd
• @​zanieb
• @​InSyncWithFoo
• @​RenzoMXD

tombi-toml/tombi (tombi)

v0.9.18

Compare Source

What's Changed

In this release, we have changed the default settings for DocumentLink, enabling document links only for crates.io or pypi.org.

[extensions]
"tombi-toml/cargo" = {
  lsp = {
    document-link = {
      cargo-toml.enabled = false,
      crates-io.enabled = true,
      git.enabled = false,
      path.enabled = false,
      workspace.enabled = false,
    },
  }
}

You can revert to the previous behavior by modifying the configuration file. However, if there is no demand from users, the DocumentLink functionality that has been disabled by default in this release may be removed in the future.

🚀 New Features

• feat: implement LSP features for pyproject and Tombi extensions by @​ya7010 in #​1712
• Refactor extension feature configuration formatting by @​ya7010 in #​1714
• break: change document-link sub-features to default-false by @​ya7010 in #​1716

🛠️ Other Changes

• Ya7010/fix ci pr1700 by @​ya7010 in #​1701
• Add wildcard support for schemas root accessors by @​ya7010 in #​1702
• Abort did_open background tasks on LSP shutdown by @​ya7010 in #​1703
• Fix document link feature toggles by @​ya7010 in #​1706
• Rename ToggleFeature to ToggleFeatureDefaultTrue across the codebase by @​ya7010 in #​1711
• feat: add BoolDefaultFalse type and update extensions to use it by @​ya7010 in #​1713
• Restore extension_features! and toggle_features! macros by @​ya7010 in #​1715

Full Changelog: tombi-toml/tombi@v0.9.17...v0.9.18

v0.9.17

Compare Source

What's Changed

🚀 New Features

• Support BBEdit hang on LSP shutdown by @​ya7010 in #​1690
• feat: Add autolib configuration to disable automatic discovery of lib targets by @​ya7010 in #​1695
• Remove obsolete rustdoc lint schema and update references in cargo.json to use HTTPS URLs by @​ya7010 in #​1696

🐛 Bug Fixes

• Fix oneOf hover branch selection by @​ya7010 in #​1693
• Fix adjacent applicator schema lookups in LSP by @​ya7010 in #​1697
• fix: Align LSP schema resolution with validation by @​ya7010 in #​1698

🛠️ Other Changes

• Split Cargo lint schemas out of cargo.json by @​ya7010 in #​1688
• chore: Mark deprecated lints in cargo-lints-clippy.json by @​ya7010 in #​1689
• Deprecate authors field in cargo.json by @​jelrwi in #​1699

New Contributors

• @​jelrwi made their first contribution in #​1699

Full Changelog: tombi-toml/tombi@v0.9.16...v0.9.17

v0.9.16

Compare Source

What's Changed

🛠️ Other Changes

• Support Cargo lints by @​BenjaminBrienen in #​1685
• feat: Allow additional properties in Cargo schema by @​ya7010 in #​1687

New Contributors

• @​BenjaminBrienen made their first contribution in #​1685

Full Changelog: tombi-toml/tombi@v0.9.15...v0.9.16

v0.9.15

Compare Source

What's Changed

🛠️ Other Changes

• [codex] clarify config-dir reference in configuration docs by @​ya7010 in #​1677
• [codex] Clarify built-in extension support by @​ya7010 in #​1678
• docs: update reference links for configuration search by @​ya7010 in #​1679
• docs: fix link formatting in configuration search section by @​ya7010 in #​1681
• Move environment variables doc page by @​ya7010 in #​1682
• Fix docs heading slug links by @​ya7010 in #​1683
• Add TOMBI_CACHE_HOME cache override by @​ya7010 in #​1684

Full Changelog: tombi-toml/tombi@v0.9.14...v0.9.15

v0.9.14

Compare Source

What's Changed

🚀 New Features

• Support .config/tombi.toml project config by @​ya7010 in #​1676

🛠️ Other Changes

• pyproject: add dependency group navigation by @​ya7010 in #​1671
• Add Cargo feature navigation by @​ya7010 in #​1672
• Add Cargo feature usage navigation by @​ya7010 in #​1673
• Fix Cargo lockfile version resolution by @​ya7010 in #​1675

Full Changelog: tombi-toml/tombi@v0.9.13...v0.9.14

tox-dev/tox (tox)

v4.53.0

Compare Source

What's Changed

• ✨ feat(toml): allow bare range/labeled dicts in env_list by @​gaborbernat in #​3923

Full Changelog: tox-dev/tox@4.52.1...4.53.0

v4.52.1

Compare Source

What's Changed

• use normalize_isa for architecture factor matching by @​rahuldevikar in #​3919
• 🐛 fix(pip): invalidate install cache on resolution env var changes by @​gaborbernat in #​3921

Full Changelog: tox-dev/tox@4.52.0...4.52.1

---

Configuration

📅 Schedule: (in timezone UTC)

• Branch creation
  • "before 4am on monday"
• Automerge
  • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.