build(deps): bump the python-dependencies group with 12 updates

[dependabot]

Updates the requirements on sentry-sdk, pydantic, pydantic-settings, gunicorn, uvicorn[standard], litestar[brotli], prek, ruff, mypy, ty, coverage and pytest-codspeed to permit the latest version.
Updates sentry-sdk from 2.58.0 to 2.60.0

Release notes

Sourced from sentry-sdk's releases.

2.60.0

Adds a new stream_gen_ai_spans option that controls how gen_ai spans are sent to Sentry. When set, the SDK extracts all gen_ai spans out of a transaction and sends them as v2 envelope items.

Enable this option if gen_ai spans are being dropped because the transaction payload exceeds size limits.

import sentry_sdk
sentry_sdk.init(
dsn='https://examplePublicKey@o0.ingest.sentry.io/0',
stream_gen_ai_spans=True,
)

New Features ✨

• (asyncpg) Add cursor span support via BaseCursor method patching by @​ericapisani in #6252
• (integrations) Pass along the conversation ID for openai responses calls by @​constantinius in #6199
• (wsgi,asgi) Introduce substitute values for filtered fields in span-streaming mode by @​ericapisani in #6178
• Remove truncation when stream_gen_ai_spans is enabled by @​alexander-alderman-webb in #6260
• Add option to send GenAI spans in the new span format by @​alexander-alderman-webb in #6079

Bug Fixes 🐛

Openai

• Guard against choices=None by @​cla7aye15I4nd in #6216
• Stop setting transaction status when child span fails by @​alexander-alderman-webb in #6192
• Only finish relevant spans in Responses patches by @​alexander-alderman-webb in #6191
• Only finish relevant spans in Chat Completions patches by @​alexander-alderman-webb in #6190

Other

• (stdlib) Instrument response body read for chunked HTTP responses by @​sentrivana in #6202
• (typing) Add @sentry_sdk.traces.trace overloads to fix typing by @​sentrivana in #6236
• Use proto version 2 to fix backfilled user agent and IP by @​sentrivana in #6256
• Make sure http.server spans are segments by @​sentrivana in #6230
• Handle mypy 2.0 related failures by @​alexander-alderman-webb in #6218

Internal Changes 🔧

Django

• Check transaction annotations on transaction events by @​alexander-alderman-webb in #6251
• Reload middleware on test teardown by @​alexander-alderman-webb in #6249

Openai

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.60.0

Adds a new stream_gen_ai_spans option that controls how gen_ai spans are sent to Sentry. When set, the SDK extracts all gen_ai spans out of a transaction and sends them as v2 envelope items.

Enable this option if gen_ai spans are being dropped because the transaction payload exceeds size limits.

import sentry_sdk
sentry_sdk.init(
dsn='https://examplePublicKey@o0.ingest.sentry.io/0',
stream_gen_ai_spans=True,
)

New Features ✨

• (asyncpg) Add cursor span support via BaseCursor method patching by @​ericapisani in #6252
• (integrations) Pass along the conversation ID for openai responses calls by @​constantinius in #6199
• (wsgi,asgi) Introduce substitute values for filtered fields in span-streaming mode by @​ericapisani in #6178
• Remove truncation when stream_gen_ai_spans is enabled by @​alexander-alderman-webb in #6260
• Add option to send GenAI spans in the new span format by @​alexander-alderman-webb in #6079

Bug Fixes 🐛

Openai

• Guard against choices=None by @​cla7aye15I4nd in #6216
• Stop setting transaction status when child span fails by @​alexander-alderman-webb in #6192
• Only finish relevant spans in Responses patches by @​alexander-alderman-webb in #6191
• Only finish relevant spans in Chat Completions patches by @​alexander-alderman-webb in #6190

Other

• (stdlib) Instrument response body read for chunked HTTP responses by @​sentrivana in #6202
• (typing) Add @sentry_sdk.traces.trace overloads to fix typing by @​sentrivana in #6236
• Use proto version 2 to fix backfilled user agent and IP by @​sentrivana in #6256
• Make sure http.server spans are segments by @​sentrivana in #6230
• Handle mypy 2.0 related failures by @​alexander-alderman-webb in #6218

Internal Changes 🔧

Django

• Check transaction annotations on transaction events by @​alexander-alderman-webb in #6251
• Reload middleware on test teardown by @​alexander-alderman-webb in #6249

Openai

... (truncated)

Commits

• e30caaa Update CHANGELOG.md
• d31ac85 release: 2.60.0
• fcb9305 feat: Remove truncation when stream_gen_ai_spans is enabled (#6260)
• 253a4d4 feat: Add option to send GenAI spans in the new span format (#6079)
• 619d803 test(langchain): Inline global state (#6261)
• f92c803 Revert "fix: Work around compromised transitive dependency (#6257)" (#6262)
• 7a303dc Add option to drop scrubbed user IP addresses (#6241)
• edaa6d6 feat(pymongo): Add span streaming support (#6253)
• 0e47ead feat(asyncpg): Add cursor span support via BaseCursor method patching (#6252)
• 17cc8c7 fix: Use proto version 2 to fix backfilled user agent and IP (#6256)
• Additional commits viewable in compare view

Updates pydantic from 2.13.3 to 2.13.4

Release notes

Sourced from pydantic's releases.

v2.13.4 2026-05-06

v2.13.4 (2026-05-06)

What's Changed

Packaging

• Bump libc from 0.2.155 to 0.2.185 by @​Viicos in #13109
• Adapt pydantic-core linker flags on macOS by @​washingtoneg and @​Viicos in #13147

Fixes

• Preserve RootModel core metadata by @​Viicos in #13129

Full Changelog: pydantic/pydantic@v2.13.3...v2.13.4

Changelog

Sourced from pydantic's changelog.

v2.13.4 (2026-05-06)

GitHub release

What's Changed

Packaging

• Bump libc from 0.2.155 to 0.2.185 by @​Viicos in #13109
• Adapt pydantic-core linker flags on macOS by @​washingtoneg and @​Viicos in #13147

Fixes

• Preserve RootModel core metadata by @​Viicos in #13129

Commits

• cf67d4b Fix linting
• f0d8a21 Prepare release v2.13.4
• 5e3fe1d Check for pydantic tag pattern in CI
• 7f9edcc Document tagging conventions
• b46a0c9 Adapt pydantic-core linker flags on macOS
• 50629c8 Update to PyPy 7.3.22
• 8522ebb Preserve RootModel core metadata
• a37f3af Adapt MISSING sentinel test to work with unreleased typing_extensions ver...
• 909259a Remove Logfire example in documentation
• 2c4174c Bump libc from 0.2.155 to 0.2.185
• See full diff in compare view

Updates pydantic-settings from 2.14.0 to 2.14.1

Release notes

Sourced from pydantic-settings's releases.

v2.14.1

What's Changed

• Bump the python-packages group with 4 updates by @​dependabot[bot] in pydantic/pydantic-settings#850
• Bump the python-packages group with 5 updates by @​dependabot[bot] in pydantic/pydantic-settings#854
• Bump the github-actions group with 3 updates by @​dependabot[bot] in pydantic/pydantic-settings#853
• Bump the python-packages group with 2 updates by @​dependabot[bot] in pydantic/pydantic-settings#856
• Fix field named cls conflicting with classmethod parameter by @​hramezani in pydantic/pydantic-settings#858
• Prepare release 2.14.1 by @​hramezani in pydantic/pydantic-settings#859

Full Changelog: pydantic/pydantic-settings@v2.14.0...v2.14.1

Commits

• e95c30b Prepare release 2.14.1 (#859)
• 0c87345 Fix field named cls conflicting with classmethod parameter (#858)
• 7bd0072 Bump the python-packages group with 2 updates (#856)
• b03e573 Bump the github-actions group with 3 updates (#853)
• eaa3b43 Bump the python-packages group with 5 updates (#854)
• 9f95615 Bump the python-packages group with 4 updates (#850)
• See full diff in compare view

Updates gunicorn from 25.3.0 to 26.0.0

Release notes

Sourced from gunicorn's releases.

26.0.0

Breaking Changes

• Eventlet worker removed: The eventlet worker class has been dropped. Migrate to gevent, gthread, or tornado.

New Features

• ASGI Framework Compatibility Suite: New end-to-end compatibility test harness covering Starlette, FastAPI, Litestar, Quart, Sanic, and BlackSheep. Current grid passes 438/444 tests (98%).
• ASGI Test Suite Expansion: 134 additional ASGI unit tests covering protocol semantics, lifespan, websockets, and chunked framing.

Security

• HTTP/1.1 Request-Target Validation (RFC 9112 sections 3.2.3, 3.2.4):
  • Reject authority-form request-target outside CONNECT
  • Reject asterisk-form request-target outside OPTIONS
  • Reject relative-reference request-targets
• Header Field Hardening (RFC 9110):
  • Reject control characters in header field-value (section 5.5)
  • Reject forbidden trailer field-names (section 6.5.1)
  • Reject Content-Length list form (RFC 9112 section 6.3)
• Request Smuggling Hardening:
  • Tighten keepalive gate and scope finish_body byte cap
  • Keep _body_receiver alive across the keepalive smuggling gate so pipelined requests cannot re-enter a closed body
  • Address parser/protocol findings from a six-point WSGI/ASGI audit
• PROXY Protocol (ASGI): Enforce proxy_allow_ips and tighten v1/v2 parsing in the ASGI callback parser.
• Connection Draining: Drain the connection on close per RFC 9112 section 9.6 to prevent reset-on-close truncation.

Bug Fixes

• Body Framing on HEAD/204/304:
  • Keep Content-Length on HEAD and 304 responses (#3621)
  • Drop body framing on HEAD/204/304 even when the framework set it
  • Warn once when an ASGI app emits a body for a no-body response
• HTTP/2 ASGI:
  • Fix _handle_stream_ended to set _body_complete in the async HTTP/2 handler so request bodies finalize correctly on stream end
  • Add InvalidChunkExtension mapping and fast-parser support in ASGI tests (#3565)
• HTTP/1.1 100-Continue: Stop adding Transfer-Encoding: chunked to 100-Continue interim responses.
• WebSocket Close Handshake (RFC 6455):
  • Comply with the close handshake state machine
  • Close the transport after the close handshake completes
  • Fix binary send when the text key is None
• Early Hints: Validate headers in the early_hints callback to match process_headers; pass only the header name to InvalidHeader (#3588).
• ASGI Framework Fixes:
  • Fix ASGI disconnect handling for Django-style apps
  • Fix Litestar request handling (use raw ASGI receive for body/headers)
  • Fix Litestar HTTP endpoints for compatibility tests
  • Fix Quart headers endpoint to normalize keys to lowercase
  • Fix Quart WebSocket close test app (missing accept())
  • Fix duplicate Transfer-Encoding header for BlackSheep streaming

... (truncated)

Commits

• 5d819cf release: 26.0.0
• b45c70d Merge pull request #3611 from zc-mattcen/docs-typo
• 99c8d48 Merge pull request #3623 from benoitc/chore/drop-eventlet-add-h2-uvloop-test-...
• 5a655af Merge pull request #3622 from benoitc/test/docker-port-and-ipv4-fixes
• 201df19 chore: remove eventlet worker; add h2 and uvloop to test deps
• f4ac8e1 test: pass action name to dirty client and stabilize after TTOU spam
• 54d38af test: unblock docker fixtures on macOS hosts
• 68843c8 Merge pull request #3621 from benoitc/fix/asgi-preserve-content-length-on-hea...
• 31f2618 Merge pull request #3620 from benoitc/fix/asgi-proxy-protocol-trust-and-parsing
• 41ec752 fix: keep Content-Length on HEAD and 304 responses
• Additional commits viewable in compare view

Updates uvicorn[standard] to 0.48.0

Release notes

Sourced from uvicorn[standard]'s releases.

Version 0.48.0

What's Changed

• Default ssl_ciphers to None and use OpenSSL defaults by @​Kludex in Kludex/uvicorn#2940
• Ignore duplicate forwarding headers in ProxyHeadersMiddleware by @​Kludex in Kludex/uvicorn#2944

Full Changelog: Kludex/uvicorn@0.47.0...0.48.0

Changelog

Sourced from uvicorn[standard]'s changelog.

0.48.0 (May 24, 2026)

Changed

• Default ssl_ciphers to None and use OpenSSL defaults (#2940)

Fixed

• Ignore duplicate forwarding headers in ProxyHeadersMiddleware (#2944)

0.47.0 (May 14, 2026)

Added

• Add ssl_context_factory for custom SSLContext configuration (#2920)

Changed

• Eagerly import the ASGI app in the parent process (#2919)

Fixed

• Treat fd=0 as a valid file descriptor with reload/workers (#2927)

0.46.0 (April 23, 2026)

Added

• Support ws_max_size in wsproto implementation (#2915)
• Support ws_ping_interval and ws_ping_timeout in wsproto implementation (#2916)

Changed

• Use bytearray for incoming WebSocket message buffer in websockets-sansio (#2917)

0.45.0 (April 21, 2026)

Added

• Add --reset-contextvars flag to isolate ASGI request context (#2912)
• Accept os.PathLike for log_config (#2905)
• Accept log_level strings case-insensitively (#2907)

Changed

• Revert "Emit http.disconnect on server shutdown for streaming responses" (#2913)
• Revert "Explicitly start ASGI run with empty context" (#2911)

Fixed

... (truncated)

Commits

• 73e84e5 Version 0.48.0 (#2951)
• 45ea116 Ignore duplicate forwarding headers in ProxyHeadersMiddleware (#2944)
• dd4394c chore(deps): bump idna from 3.11 to 3.15 (#2941)
• abe0781 Default ssl_ciphers to None and use OpenSSL defaults (#2940)
• 479a2c0 Version 0.47.0 (#2937)
• 89347fd Add 7-day cooldown for dependency resolution via uv exclude-newer (#2936)
• 767315b Drop unused contents/actions permissions from zizmor workflow (#2935)
• f25ee43 chore(deps): bump urllib3 from 2.6.3 to 2.7.0 (#2933)
• 8782666 Fix typo in docs/deployment/index.md. (#2932)
• ad5ff87 Treat fd=0 as a valid file descriptor with reload/workers (#2927)
• Additional commits viewable in compare view

Updates litestar[brotli] to 2.22.0

Release notes

Sourced from litestar[brotli]'s releases.

v2.22.0

Sponsors 🌟

Thanks to these incredible business sponsors:

• Scalar (@​scalar), Telemetry Sports (via @​chris-telemetry)

Thanks to these incredible personal sponsors:

• Polar.sh: @​Nozavi, @​cemrehancavdar, @​thomastu
• GitHub Sponsors: @​ddahan, @​roboflow, @​cbscsm, @​scalar, @​benjamin-kirkbride
• OpenCollective: Christian Y, Shaun Wah, Jordan Russel

New contributors 🎉

• @​maksimzayats made their first contribution in litestar-org/litestar#4636
• @​worksbyfriday made their first contribution in litestar-org/litestar#4605
• @​pavdwest made their first contribution in litestar-org/litestar#4676
• @​infraAnchor made their first contribution in litestar-org/litestar#4659

What's changed

https://docs.litestar.dev/2/release-notes/changelog.html#2.22.0

Full Changelog

litestar-org/litestar@v2.21.1...v2.22.0

Commits

• 2f80070 fix: 3.9 typing
• 6930a20 fix: ignore x-allowed-hosts
• 299a584 fix: Ensure 'csrf_input' is properly escaped before rendering
• a1d51b9 feat(core): Introduce explicit parameter declarations with generics (#4750)
• a8095be chore: Typing fixes
• 2d9f742 chore: add Python 3.14 classifier to pyproject.toml (#4776)
• 45c0ef9 fix(request): content-length check incompatible with decompression middleware...
• 693649e ci: Remove codeql (#4706)
• bf89151 test: Remove deprecated asyncio.WindowsSelectorEventLoopPolicy (#4704)
• f17780a docs(usage/excluding-and-including-endpoints): fix misleading regex examples ...
• Additional commits viewable in compare view

Updates prek from 0.3.10 to 0.4.1

Release notes

Sourced from prek's releases.

0.4.1

Release Notes

Released on 2026-05-20.

Enhancements

• Fix pre-push range after rebase (#2089)
• Prefer extensions over loose filename tags (#2092)
• Skip installs for hooks that will not run (#2103)

Performance

• Optimize meta hook file scans (#2106)
• Reduce run filtering allocations (#2090)

Contributors

• @​j178

Install prek 0.4.1

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/j178/prek/releases/download/v0.4.1/prek-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/j178/prek/releases/download/v0.4.1/prek-installer.ps1 | iex"

Install prebuilt binaries via Homebrew

brew install prek

Download prek 0.4.1

File	Platform	Checksum
prek-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
prek-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
prek-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum
prek-i686-pc-windows-msvc.zip	x86 Windows	checksum
prek-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
prek-aarch64-unknown-linux-gnu.tar.gz	ARM64 Linux	checksum

... (truncated)

Changelog

Sourced from prek's changelog.

0.4.1

Released on 2026-05-20.

Enhancements

• Fix pre-push range after rebase (#2089)
• Prefer extensions over loose filename tags (#2092)
• Skip installs for hooks that will not run (#2103)

Performance

• Optimize meta hook file scans (#2106)
• Reduce run filtering allocations (#2090)

Contributors

• @​j178

0.4.0

Released on 2026-05-14.

Breaking changes

These are narrow cleanup breaks in behavior that was either temporary or never worked correctly. Most users should not need to change anything.

• Generated hook scripts no longer preserve -q, -v, or --no-progress passed to prek install. This only affects users who expected those global flags to be baked into installed hooks. (#1966)
• language_version no longer accepts direct executable paths. Use language_version: system for a system toolchain, or use a supported version request instead. This path form did not work reliably before, so existing working configs should be unaffected. (#1831)

Enhancements

• Expand tilde in --config, --cd, --log-file and --git-dir (#2063)
• Prevent auto-update cooldown downgrades (#2055)
• Use managed npm cache for node hooks (#2075)

Bug fixes

• Fix npm config env overrides for node hooks (#2074)

Documentation

• Add cookbook page for enabling Git 2.54 config-based global hooks (#2061)

Contributors

• @​j178

0.3.13

... (truncated)

Commits

• 871b9ed Bump version to 0.4.1 (#2107)
• 3c26faf Optimize meta hook file scans (#2106)
• 7780f11 Clean up run hook installation flow (#2105)
• c5dc885 Refine hook install filtering (#2104)
• 9db879e Skip installs for hooks that will not run (#2103)
• 2a0da57 Simplify workspace file handling (#2102)
• 33ca060 Lock file maintenance (#2072)
• 03f11c0 Update GitHub Actions (#2101)
• 354f431 Update dependency uv to v0.11.13 (#2094)
• 4a41828 Update Rust crate quick-xml to v0.39.4 (#2098)
• Additional commits viewable in compare view

Updates ruff from 0.15.11 to 0.15.14

Release notes

Sourced from ruff's releases.

0.15.14

Release Notes

Released on 2026-05-21.

Preview features

• [airflow] Implement airflow-task-implicit-multiple-outputs (AIR202) (#25152)
• [flake8-use-pathlib] Mark PTH101 fix as unsafe when first argument is a class attribute annotated as int (#25086)
• [pylint] Implement too-many-try-statements (W0717) (#23970)
• [ruff] Add incorrect-decorator-order (RUF074) (#23461)
• [ruff] Add fallible-context-manager (RUF075) (#22844)

Bug fixes

• Fix lambda formatting in interpolated string expressions (#25144)
• Treat generic frozenset annotations as immutable (#25251)
• [flake8-type-checking] Avoid strict behavior when future-annotations are enabled (TC001, TC002, TC003) (#25035)
• [pylint] Avoid false positives in else clause (PLR1733) (#25177)

Rule changes

• [flake8-comprehensions] Skip C417 for lambdas with positional-only parameters (#25272)
• [flake8-simplify] Preserve f-string source verbatim in SIM101 fix (#25061)

Performance

• Avoid unnecessary parser lookahead for operators (#25290)

Documentation

• Update code example setting Neovim LSP log level (#25284)

Other changes

• Add full PEP 798 support (#25104)
• Add a parser recursion limit (#24810)
• Update various ruff_python_stdlib APIs (#25273)

Contributors

• @​ocaballeror
• @​lerebear
• @​samuelcolvin
• @​baltasarblanco
• @​aconal-com
• @​anishgirianish
• @​JelleZijlstra
• @​AlexWaygood
• @​ntBre

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.14

Released on 2026-05-21.

Preview features

• [airflow] Implement airflow-task-implicit-multiple-outputs (AIR202) (#25152)
• [flake8-use-pathlib] Mark PTH101 fix as unsafe when first argument is a class attribute annotated as int (#25086)
• [pylint] Implement too-many-try-statements (W0717) (#23970)
• [ruff] Add incorrect-decorator-order (RUF074) (#23461)
• [ruff] Add fallible-context-manager (RUF075) (#22844)

Bug fixes

• Fix lambda formatting in interpolated string expressions (#25144)
• Treat generic frozenset annotations as immutable (#25251)
• [flake8-type-checking] Avoid strict behavior when future-annotations are enabled (TC001, TC002, TC003) (#25035)
• [pylint] Avoid false positives in else clause (PLR1733) (#25177)

Rule changes

• [flake8-comprehensions] Skip C417 for lambdas with positional-only parameters (#25272)
• [flake8-simplify] Preserve f-string source verbatim in SIM101 fix (#25061)

Performance

• Avoid unnecessary parser lookahead for operators (#25290)

Documentation

• Update code example setting Neovim LSP log level (#25284)

Other changes

• Add full PEP 798 support (#25104)
• Add a parser recursion limit (#24810)
• Update various ruff_python_stdlib APIs (#25273)

Contributors

• @​ocaballeror
• @​lerebear
• @​samuelcolvin
• @​baltasarblanco
• @​aconal-com
• @​anishgirianish
• @​JelleZijlstra
• @​AlexWaygood
• @​ntBre
• @​adityasingh2400

... (truncated)

Commits

• 9ad2da3 Bump 0.15.14 (#25295)
• c714e84 [ty] Modernize setup of union types in mdtests (#25291)
• 8a8e35e [flake8-comprehensions] Skip C417 for lambdas with positional-only parame...
• aea5ed4 Avoid unnecessary parser lookahead for operators (#25290)
• e9d72bb [ty] Allow enum member accesses on self (#25077)
• 6cbd59b Set exclude-newer = "7 days" in our PEP-723 scripts (#25285)
• 9999a39 Update code example on how to update Neovim LSP log level (#25284)
• 67d8c54 [ty] Retain recursively-defined state in binary expressions (#25277)
• 25a3191 [ty] Refine Callable class-decorator fallback for unknown results (#25250)
• c423054 Add a recursion limit to the parser (#24810)
• Additional commits viewable in compare view

Updates mypy from 1.20.2 to 2.1.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next Release

Mypy 2.1

We’ve just uploaded mypy 2.1.0 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

librt.vecs: Fast Growable Array Type for Mypyc

The new librt.vecs module provides an efficient growable array type vec that is optimized for mypyc use. It provides fast, packed arrays with integer and floating point value types, which can be several times faster than list, and tens of times faster than array.array in code compiled using mypyc. It also supports nested vec objects and non-value-type items, such as vec[vec[str]].

Refer to the documentation for the details.

Contributed by Jukka Lehtosalo.

librt.random: Fast Pseudo-Random Number Generation

The new librt.random module provides fast pseudo-random number generation that is optimized for code compiled using mypyc. It can be 3x to 10x faster than the stdlib random module in compiled code.

Refer to the documentation for the details.

Contributed by Jukka Lehtosalo (PR 21433).

Mypyc Improvements

• Enable incremental self-compilation (Vaggelis Danias, PR 21369)
• Make compilation order with multiple files consistent (Piotr Sawicki, PR 21419)
• Fix crash on accessing StopAsyncIteration (Piotr Sawicki, PR 21406)
• Fix incremental compilation with separate flag (Vaggelis Danias, PR 21299)

Fixes to Crashes

• Fix crash on partial type with --allow-redefinition and global declaration (Jukka Lehtosalo, PR 21428)
• Fix broken awaitable generator patching (Ivan Levkivskyi, PR 21435)

... (truncated)

Commits

• c1c336d Remove +dev from version
• 74df14b Add changelog for mypy 2.1 (#21464)
• 022d9bc Revert "TypeForm: Enable by default (#21262)"
• 8826288 [mypyc] Document librt.random (#21463)
• 3f4067b Bump librt version to 0.11.0 (#21458)
• 2b1eb58 [mypyc] Enable incremental self-compilation (#21369)
• 8152f4a Respect file config comments for stale modules (#21444)
• 116d60b Fix nondeterminism from nonassociativity of overload joins (#21455)
• 6c4af8e Fix function call message change for small number of args (#21432)
• 4b8fdca [mypyc] Add librt.random module (#21433)
• Additional commits viewable in compare view

Updates ty from 0.0.32 to 0.0.39

Release notes

Sourced from ty's releases.

0.0.39

Release Notes

Released on 2026-05-22.

This release removes the Python 3.9 branches from our vendored standard library stubs. ty now only has "full" support for Python 3.10 and later, but will still report version-specific syntax errors and other diagnostics when --python-version 3.9 is provided via the CLI.

Bug fixes

• Avoid panicking on __new__ assignments to classes (#25282)
• Preserve declaration order when synthesizing class fields (#25249)
• Respect dict-compatible fallbacks in TypedDict unions (...

  Description has been truncated

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 90.59%. Comparing base (722e835) to head (d895a27).
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #158   +/-   ##
=======================================
  Coverage   90.59%   90.59%           
=======================================
  Files          11       11           
  Lines         117      117           
  Branches        3        3           
=======================================
  Hits          106      106           
  Misses         10       10           
  Partials        1        1           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.