chore(deps): bump the pip group across 1 directory with 7 updates

[dependabot]

Bumps the pip group with 7 updates in the / directory:

Package	From	To
black	24.8.0	25.1.0
pillow	10.4.0	11.2.1
pyinstaller	6.10.0	6.13.0
pylint	3.3.0	3.3.6
pyside6	6.7.2	6.9.0
pytest	8.3.3	8.3.5
validators	0.34.0	0.35.0

Updates black from 24.8.0 to 25.1.0

Release notes

Sourced from black's releases.

25.1.0

Highlights

This release introduces the new 2025 stable style (#4558), stabilizing the following changes:

• Normalize casing of Unicode escape characters in strings to lowercase (#2916)
• Fix inconsistencies in whether certain strings are detected as docstrings (#4095)
• Consistently add trailing commas to typed function parameters (#4164)
• Remove redundant parentheses in if guards for case blocks (#4214)
• Add parentheses to if clauses in case blocks when the line is too long (#4269)
• Whitespace before # fmt: skip comments is no longer normalized (#4146)
• Fix line length computation for certain expressions that involve the power operator (#4154)
• Check if there is a newline before the terminating quotes of a docstring (#4185)
• Fix type annotation spacing between * and more complex type variable tuple (#4440)

The following changes were not in any previous release:

• Remove parentheses around sole list items (#4312)
• Generic function definitions are now formatted more elegantly: parameters are split over multiple lines first instead of type parameter definitions (#4553)

Stable style

• Fix formatting cells in IPython notebooks with magic methods and starting or trailing empty lines (#4484)
• Fix crash when formatting with statements containing tuple generators/unpacking (#4538)

Preview style

• Fix/remove string merging changing f-string quotes on f-strings with internal quotes (#4498)
• Collapse multiple empty lines after an import into one (#4489)
• Prevent string_processing and wrap_long_dict_values_in_parens from removing parentheses around long dictionary values (#4377)
• Move wrap_long_dict_values_in_parens from the unstable to preview style (#4561)

Packaging

• Store license identifier inside the License-Expression metadata field, see PEP 639. (#4479)

Performance

• Speed up the is_fstring_start function in Black's tokenizer (#4541)

Integrations

• If using stdin with --stdin-filename set to a force excluded path, stdin won't be

... (truncated)

Changelog

Sourced from black's changelog.

25.1.0

Highlights

This release introduces the new 2025 stable style (#4558), stabilizing the following changes:

• Normalize casing of Unicode escape characters in strings to lowercase (#2916)
• Fix inconsistencies in whether certain strings are detected as docstrings (#4095)
• Consistently add trailing commas to typed function parameters (#4164)
• Remove redundant parentheses in if guards for case blocks (#4214)
• Add parentheses to if clauses in case blocks when the line is too long (#4269)
• Whitespace before # fmt: skip comments is no longer normalized (#4146)
• Fix line length computation for certain expressions that involve the power operator (#4154)
• Check if there is a newline before the terminating quotes of a docstring (#4185)
• Fix type annotation spacing between * and more complex type variable tuple (#4440)

The following changes were not in any previous release:

• Remove parentheses around sole list items (#4312)
• Generic function definitions are now formatted more elegantly: parameters are split over multiple lines first instead of type parameter definitions (#4553)

Stable style

• Fix formatting cells in IPython notebooks with magic methods and starting or trailing empty lines (#4484)
• Fix crash when formatting with statements containing tuple generators/unpacking (#4538)

Preview style

• Fix/remove string merging changing f-string quotes on f-strings with internal quotes (#4498)
• Collapse multiple empty lines after an import into one (#4489)
• Prevent string_processing and wrap_long_dict_values_in_parens from removing parentheses around long dictionary values (#4377)
• Move wrap_long_dict_values_in_parens from the unstable to preview style (#4561)

Packaging

• Store license identifier inside the License-Expression metadata field, see PEP 639. (#4479)

Performance

• Speed up the is_fstring_start function in Black's tokenizer (#4541)

Integrations

... (truncated)

Commits

• 8a737e7 Prepare release 25.1.0 (#4563)
• d330dee docs: We're not going to use backslashes for the with statement (#4564)
• 3d81290 Move wrap_long_dict_values_in_parens to the preview style (#4561)
• 459562c Improve function declaration wrapping when it contains generic type definitio...
• 99dbf30 Cache executor to avoid hitting open file limits (#4560)
• c0b92f3 Prepare the 2025 stable style (#4558)
• e58baf1 Add test for #1187 (#4559)
• 1455ae4 Fix docs CI (#4555)
• 584d033 fix: Don't remove parenthesis around long dictionary values (#4377)
• 6e96540 Fix CI (#4551)
• Additional commits viewable in compare view

Updates pillow from 10.4.0 to 11.2.1

Release notes

Sourced from pillow's releases.

11.2.1

https://pillow.readthedocs.io/en/stable/releasenotes/11.2.1.html

Deprecations

• Moved get_child_images() to ImageFile #8689 [@​radarhere]

Documentation

• Add 11.2.1 release notes #8885 [@​radarhere]
• Added avif to config settings #8875 [@​radarhere]
• Added release notes for #8330 #8853 [@​radarhere]
• Added release notes for #8781 and #8837 #8843 [@​radarhere]
• Added media_white_point to ImageCms documentation #8829 [@​radarhere]
• Removed FIXME #8825 [@​radarhere]
• Updated comment #8822 [@​radarhere]
• Added release notes for #8807 #8824 [@​radarhere]
• DXT3 images are read in RGBA mode #8817 [@​radarhere]
• JPEG comments are from the COM marker #8788 [@​radarhere]
• Update Sphinx to 8.2 to remove nitpick ignore #8763 [@​radarhere]
• Updated AffineTransform docstring to mention it uses the inverse matrix #8735 [@​radarhere]
• Added MozJPEG documentation #8699 [@​radarhere]
• Added Sphinx configuration key #8691 [@​radarhere]
• Updated macOS tested Pillow versions #8654 [@​radarhere]

Dependencies

• Updated xz to 5.8.1 #8868 [@​radarhere]
• Updated harfbuzz to 11.0.1 #8870 [@​radarhere]
• Update scientific-python/upload-nightly-action action to v0.6.2 #8865 [@renovate[bot]]
• Updated xz to 5.8.0 in macOS and Linux wheels, but not on manylinux2014 #8836 [@​radarhere]
• Update dependency cibuildwheel to v2.23.2 #8832 [@renovate[bot]]
• Updated harfbuzz to 11.0.0 #8830 [@​radarhere]
• Update dependency cibuildwheel to v2.23.1 #8818 [@renovate[bot]]
• Updated Ghostscript to 10.5.0 #8814 [@​radarhere]
• Updated libtiff to 4.7.0 #8812 [@​radarhere]
• [pre-commit.ci] pre-commit autoupdate #8795 [@pre-commit-ci[bot]]
• Updated harfbuzz to 10.4.0 #8770 [@​radarhere]
• Update dependency mypy to v1.15.0 #8791 [@renovate[bot]]
• Updated libpng to 1.6.47 #8764 [@​radarhere]
• Updated lcms2 to 2.17 #8742 [@​radarhere]
• Update dependency cibuildwheel to v2.23.0 #8785 [@renovate[bot]]
• Updated zlib-ng to 2.2.4 #8745 [@​radarhere]
• Updated libimagequant to 4.3.4 on Windows #8744 [@​radarhere]
• [pre-commit.ci] pre-commit autoupdate #8729 [@pre-commit-ci[bot]]
• Updated harfbuzz to 10.2.0 #8688 [@​radarhere]
• Updated xz to 5.6.4 #8711 [@​radarhere]
• Updated libpng to 1.6.46 #8712 [@​radarhere]
• Updated libimagequant to 4.3.4 #8710 [@​radarhere]
• Updated libpng to 1.6.45 #8670 [@​radarhere]

... (truncated)

Changelog

Sourced from pillow's changelog.

Changelog (Pillow)

11.1.0 and newer

See GitHub Releases:

• https://github.com/python-pillow/Pillow/releases

11.0.0 (2024-10-15)

• Update licence to MIT-CMU #8460 [hugovk]

• Conditionally define ImageCms type hint to avoid requiring core #8197 [radarhere]

• Support writing LONG8 offsets in AppendingTiffWriter #8417 [radarhere]

• Use ImageFile.MAXBLOCK when saving TIFF images #8461 [radarhere]

• Do not close provided file handles with libtiff when saving #8458 [radarhere]

• Support ImageFilter.BuiltinFilter for I;16* images #8438 [radarhere]

• Use ImagingCore.ptr instead of ImagingCore.id #8341 [homm, radarhere, hugovk]

• Updated EPS mode when opening images without transparency #8281 [Yay295, radarhere]

• Use transparency when combining P frames from APNGs #8443 [radarhere]

• Support all resampling filters when resizing I;16* images #8422 [radarhere]

• Free memory on early return #8413 [radarhere]

• Cast int before potentially exceeding INT_MAX #8402 [radarhere]

... (truncated)

Commits

• 339bc5d 11.2.1 version bump
• 857b884 Merge pull request #8885 from radarhere/releasenotes
• 7a0092f Remove incomplete 11.2.0 release, bill as 11.2.1 instead
• d52c2db Do not include libavif in wheels
• 8dafc38 Added 11.2.1 release notes
• 07d7800 Removed release notes update
• 0490948 Remove GPL v2 license (#8884)
• 774d0ae Merge pull request #8868 from radarhere/xz_upgrade
• d1e27fc Merge pull request #8870 from radarhere/harfbuzz_upgrade
• c8d98d5 Added avif to config settings (#8875)
• Additional commits viewable in compare view

Updates pyinstaller from 6.10.0 to 6.13.0

Release notes

Sourced from pyinstaller's releases.

v6.13.0

Please see the v6.13.0 section of the changelog for a list of the changes since v6.12.0.

v6.12.0

Please see the v6.12.0 section of the changelog for a list of the changes since v6.11.1.

v6.11.1

Please see the v6.11.1 section of the changelog for a list of the changes since v6.11.0.

v6.11.0

Please see the v6.11.0 section of the changelog for a list of the changes since v6.10.0.

Changelog

Sourced from pyinstaller's changelog.

6.13.0 (2025-04-15)

Features

* (macOS) When assembling the executable, PyInstaller now modifies the
  Mach-O image UUID of all architecture slices in the executable, and
  sets them to a value derived from the hash of the embedded PKG archive
  and the original (bootloader's) UUID. This should ensure that different
  application executables have unique identifiers, as per
  `TN3178
  <https://developer.apple.com/documentation/technotes/tn3178-checking-for-and-resolving-build-uuid-problems>`_,
  which might be required by newer macOS features, such as
  `local network privacy
  <https://developer.apple.com/documentation/technotes/tn3179-understanding-local-network-privacy#Build-time-considerations>`_.
  (:issue:`9056`)
* Extend analysis code so that when extension module is encountered, it
  checks for the presence of an adjacent ``.py`` or ``.pyi`` file, and
  if present, attempt to perform import analysis on such accompanying
  source/interface file. (:issue:`9084`)
Bugfix

* (Windows) Fix (de)serialization of ``WORD``-typed fields in the
  ``VersionInfo`` structure - it should be using 16-bit unsigned integer
  format (``'H'``) instead of signed one (``'h'``). This, for example,
  fixes the ``struct.error: 'h' format requires -32768 &lt;= number &lt;= 32767``
  error when ``VersionInfo`` contains a ``VarFileInfo`` / ``VarStruct``
  entry with the code page set to 65001. (:issue:`9086`)
* Fix detection of ``setuptools``-vendored modules (i.e., not packages)
  in the ``PyInstaller.utils.hooks.setuptools.SetuptoolsInfo`` hook utility
  class; for example, the ``setuptools/_vendor/typing_extensions.py`` module.
  (:issue:`9102`)
Deprecations

</code></pre>

<ul>

<li>Onefile in combination with macOS's .app bundles will be blocked in v7.0.

Onefile app bundles are not really single file and are heavily penalised by

macOS's security scanning. Please use onedir mode instead. (:issue:<code>9049</code>)</li>

</ul>

<p>Hooks</p>

<pre><code>

Add hook for PyQt6.QtStateMachine that was introduced in PyQt6

&lt;/tr&gt;&lt;/table&gt;

</code></pre>

</blockquote>

<p>... (truncated)</p>

</details>

<details>

<summary>Commits</summary>

<ul>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/306d4d92580fea7be7ff2c89ba112cdc6f73fac1&quot;&gt;&lt;code&gt;306d4d9&lt;/code&gt;&lt;/a> Release v6.13.0. [skip ci]</li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/c5eb50cfb41eae75c9afc5535cd633e349606c1b&quot;&gt;&lt;code&gt;c5eb50c&lt;/code&gt;&lt;/a> hookutils: setuptools: fix detection of vendored modules</li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/4c2d04f436e3aa3194938cddf3520033674e0c22&quot;&gt;&lt;code&gt;4c2d04f&lt;/code&gt;&lt;/a> tests: skip incompatible tests when running under Termux</li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/67eb3f5f3459a4beb63c3982d161d8d948d2ae0a&quot;&gt;&lt;code&gt;67eb3f5&lt;/code&gt;&lt;/a> compat: add is_termux flag</li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/d403842f4a2ea52bb05771ff5ce8b8136a90f693&quot;&gt;&lt;code&gt;d403842&lt;/code&gt;&lt;/a> ci: add a CI workflow for Termux</li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/9c8665913e0a5440cab29711fe07612435d34385&quot;&gt;&lt;code&gt;9c86659&lt;/code&gt;&lt;/a> tests: xfail test_reproducible_subsequent_builds for python &lt; 3.11 on linux</li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/d29458f5468cec40cce3b5bcc4763a1067dfe5f9&quot;&gt;&lt;code&gt;d29458f&lt;/code&gt;&lt;/a> Tests: Requirements: Scheduled weekly dependency update for week 15 (<a href="https://redirect.github.com/pyinstaller/pyinstaller/issues/9097&quot;&gt;#9097&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/97372400c13440c65d061bf4514c9f76fdae8480&quot;&gt;&lt;code&gt;9737240&lt;/code&gt;&lt;/a> bootloader: have onefile parent always pre-load system VC runtime DLLs</li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/1b94ea1d64d83f4c5faafe2cda793e6834d4e768&quot;&gt;&lt;code&gt;1b94ea1&lt;/code&gt;&lt;/a> bootloader: perform onefile parent/child sync with POSIX semaphore</li>

<li><a href="https://github.com/pyinstaller/pyinstaller/commit/eb236fb4f05d1f0715602a3efdda530233aff8c9&quot;&gt;&lt;code&gt;eb236fb&lt;/code&gt;&lt;/a> Tests: Requirements: Scheduled weekly dependency update for week 14 (<a href="https://redirect.github.com/pyinstaller/pyinstaller/issues/9090&quot;&gt;#9090&lt;/a&gt;)&lt;/li>

<li>Additional commits viewable in <a href="https://github.com/pyinstaller/pyinstaller/compare/v6.10.0...v6.13.0&quot;&gt;compare view</a></li>

</ul>

</details>
<br />


Updates pylint from 3.3.0 to 3.3.6

Commits

7ac5a4d Bump pylint to 3.3.6, update changelog
32871c5 Move deprecated 'tool.setuptools.license-files', remove license classifier (#...
6455c45 Add pyproject.fmt to the pre-commit tooling (#10220)
e394611 Bump types-setuptools from 75.8.2.20250305 to 76.0.0.20250313 (#10279)
544464a [used-before-assignment] Fix FP for inner function return type (#10275) (#10285)
f28d768 Ref #10260 -- Add documentation for the github output format (#10272) (#10273)
6b68f91 Add additional permissions for backport workflow (#10269) (#10270)
819d606 Minor improvements to release workflow (#10267)
aaab3cc Bump pylint to 3.3.5, update changelog (#10266)
1052bc8 Bump pylint to 3.3.5a0, update changelog
Additional commits viewable in compare view




Updates pyside6 from 6.7.2 to 6.9.0
Updates pytest from 8.3.3 to 8.3.5

Release notes
Sourced from pytest's releases.

8.3.5
pytest 8.3.5 (2025-03-02)
Bug fixes

#11777: Fixed issue where sequences were still being shortened even with -vv verbosity.
#12888: Fixed broken input when using Python 3.13+ and a libedit build of Python, such as on macOS or with uv-managed Python binaries from the python-build-standalone project. This could manifest e.g. by a broken prompt when using Pdb, or seeing empty inputs with manual usage of input() and suspended capturing.
#13026: Fixed AttributeError{.interpreted-text role="class"} crash when using --import-mode=importlib when top-level directory same name as another module of the standard library.
#13053: Fixed a regression in pytest 8.3.4 where, when using --import-mode=importlib, a directory containing py file with the same name would cause an ImportError
#13083: Fixed issue where pytest could crash if one of the collected directories got removed during collection.

Improved documentation


#12842: Added dedicated page about using types with pytest.
See types{.interpreted-text role="ref"} for detailed usage.


Contributor-facing changes

#13112: Fixed selftest failures in test_terminal.py with Pygments >= 2.19.0
#13256: Support for Towncrier versions released in 2024 has been re-enabled
when building Sphinx docs -- by webknjaz{.interpreted-text role="user"}.

8.3.4
pytest 8.3.4 (2024-12-01)
Bug fixes


#12592: Fixed KeyError{.interpreted-text role="class"} crash when using --import-mode=importlib in a directory layout where a directory contains a child directory with the same name.


#12818: Assertion rewriting now preserves the source ranges of the original instructions, making it play well with tools that deal with the AST, like executing.


#12849: ANSI escape codes for colored output now handled correctly in pytest.fail{.interpreted-text role="func"} with [pytrace=False]{.title-ref}.


#9353: pytest.approx{.interpreted-text role="func"} now uses strict equality when given booleans.


Improved documentation


#10558: Fix ambiguous docstring of pytest.Config.getoption{.interpreted-text role="func"}.


#10829: Improve documentation on the current handling of the --basetemp option and its lack of retention functionality (temporary directory location and retention{.interpreted-text role="ref"}).




... (truncated)


Commits

b55ab2a Prepare release version 8.3.5
e217726 Added dedicated page about using types with pytest #12842 (#12963) (#13260)
2fa3f83 Add more resources and studies to flaky tests page in docs (#13250) (#13259)
e5c2efe Merge pull request #13256 from webknjaz/maintenance/towncrier-bump (#13258)
3419674 Merge pull request #13187 from pytest-dev/patchback/backports/8.3.x/b4009b319...
b75cfb1 Add readline workaround for libedit (#13176)
edbfff7 doc: Clarify capturing .readouterr() return value (#13222) (#13225)
2ebba00 Merge pull request #13199 from jakkdl/tox_docs_no_fetch (#13200)
eb6496b doc: Change training to remote only (#13196) (#13197)
78cf1f6 ci: Bump build-and-inspect-python-package (#13188)
Additional commits viewable in compare view




Updates validators from 0.34.0 to 0.35.0

Release notes
Sourced from validators's releases.

0.35.0
Breaking ⚠️

Drops support for Python v3.8.

Features

Validator russian individual tax number by @​TheDrunkenBear in #408
feat: allow custom URL scheme validation by @​e3krisztian in #409
Refactor API: remove print from ru_inn, update description, and expose via __init__ by @​TheDrunkenBear in #419
Add Mir card validation support by @​TheDrunkenBear in #420

Maintenance

Update README.md by @​mattseymour in #400
fix(domain): accept .onion as a valid TLD by @​davidt99 in #402
fix(url): add hashtag to allowed fragment characters by @​davidt99 in #405
chore(deps): bump jinja2 from 3.1.4 to 3.1.6 in /package by @​dependabot in #414
Fix email regex issue 140 by @​cwisdo in #411
fix(uri): replace lstrip("mailto:") with manual prefix removal by @​max-moser in #418
running doctest failes by @​d-chris in #417
Fix: Allow Special DOI Cases Used in Public Administration Tests by @​MaurizioPilia in #415
chore: formatting; sync dependencies by @​yozachar in #422
chore: prepare for new release by @​yozachar in #424
chore: updates changelog by @​yozachar in #425

New Contributors

@​mattseymour made their first contribution in python-validators/validators#400
@​davidt99 made their first contribution in python-validators/validators#402
@​TheDrunkenBear made their first contribution in python-validators/validators#408
@​e3krisztian made their first contribution in python-validators/validators#409
@​cwisdo made their first contribution in python-validators/validators#411
@​max-moser made their first contribution in python-validators/validators#418
@​d-chris made their first contribution in python-validators/validators#417
@​MaurizioPilia made their first contribution in python-validators/validators#415

Full Changelog: 0.34.0...0.35.0



Changelog
Sourced from validators's changelog.

0.35.0 (2025-05-01)
Breaking ⚠️

Drops support for Python v3.8.

Features

Validator russian individual tax number by @​TheDrunkenBear in #408
feat: allow custom URL scheme validation by @​e3krisztian in #409
Refactor API: remove print from ru_inn, update description, and expose via __init__ by @​TheDrunkenBear in #419
Add Mir card validation support by @​TheDrunkenBear in #420

Maintenance

Update README.md by @​mattseymour in #400
fix(domain): accept .onion as a valid TLD by @​davidt99 in #402
fix(url): add hashtag to allowed fragment characters by @​davidt99 in #405
chore(deps): bump jinja2 from 3.1.4 to 3.1.6 in /package by @​dependabot in #414
Fix email regex issue 140 by @​cwisdo in #411
fix(uri): replace lstrip("mailto:") with manual prefix removal by @​max-moser in #418
running doctest failes by @​d-chris in #417
Fix: Allow Special DOI Cases Used in Public Administration Tests by @​MaurizioPilia in #415
chore: formatting; sync dependencies by @​yozachar in #422
chore: prepare for new release by @​yozachar in #424
chore: updates changelog by @​yozachar in #425

Full Changelog: 0.34.0...0.35.0



Commits

75788ed Merge pull request #425 from yozachar/workshop
0b1799c chore: updates changelog
de4948f Merge pull request #424 from yozachar/workshop
6d8a1ab chore: prepare for new release
8691cea chore: formatting; sync dependencies (#422)
bafe62e feat: add Mir card validation support (#420)
7c97eca Fix: Allow Special DOI Cases Used in Public Administration Tests (#415)
b2510d1 feat: adds doctest (#417)
f7742c5 Refactor API: remove print from ru_inn, update description, and expose via __...
d6241fc fix(uri): remove "mailto:" prefix manually (#418)
Additional commits viewable in compare view




Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options


You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions