Skip to content

Bump the python-uv-lock group across 1 directory with 7 updates#799

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/uv/python-uv-lock-6b0026ba71
Open

Bump the python-uv-lock group across 1 directory with 7 updates#799
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/uv/python-uv-lock-6b0026ba71

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 26, 2026

Bumps the python-uv-lock group with 7 updates in the / directory:

Package From To
langchain 1.2.18 1.3.1
langchain-openai 1.2.1 1.2.2
langchain-google-genai 4.2.2 4.2.3
google-auth 2.52.0 2.53.0
pytest-asyncio 1.3.0 1.4.0
basedpyright 1.39.4 1.39.6
ruff 0.15.12 0.15.14

Updates langchain from 1.2.18 to 1.3.1

Release notes

Sourced from langchain's releases.

langchain-core==1.3.1

Changes since langchain-core==1.3.0

release(core): 1.3.1 (#36972) feat(core): allow _format_output to pass through list of ToolOutputMixin instances (#36963) chore: bump nbconvert from 7.17.0 to 7.17.1 in /libs/core (#36923) feat(core): Update inheritance behavior for tracer metadata for special keys (#36900) chore: bump langsmith from 0.7.13 to 0.7.31 in /libs/core (#36813)

langchain-fireworks==1.3.1

Changes since langchain-fireworks==1.3.0

fix(fireworks): require api_key in FireworksEmbeddings (#37193) release(fireworks): 1.3.1 (#37189) fix(fireworks): strip non-wire keys from ToolMessage text content blocks (#37187)

langchain==1.3.1

Changes since langchain==1.3.0

release(langchain): 1.3.1 (#37454) fix(langchain): alias Bedrock providers in summarization token check (#37453)

langchain-core==1.3.0

Changes since langchain-core==1.2.31

release(core): release 1.3.0 (#36851) release(core): 1.3.0a3 (#36829) chore(core): keep checkpoint_ns behavior in streaming metadata for backwards compat (#36828) feat(core): Add chat model and LLM invocation params to traceable metadata (#36771) fix(core): restore cloud metadata IPs and link-local range in SSRF policy (#36816) chore(deps): bump pytest to 9.0.3 (#36801) chore(core): harden private SSRF utilities (#36768) fix(openai): handle content blocks without type key in responses api conversion (#36725) chore: bump pytest from 9.0.2 to 9.0.3 in /libs/core (#36719) release(core): 1.3.0.a2 (#36698) fix(core): Use reference counting for storing inherited run trees to support garbage collection (#36660) docs(core): nit (#36685) release(core): 1.3.0a1 (#36656) chore(core): reduce streaming metadata / perf (#36588)

langchain-fireworks==1.3.0

Changes since langchain-fireworks==1.2.1

release(fireworks): 1.3.0 (#37144) feat(fireworks): service_tier init kwarg on ChatFireworks (#37143) chore(model-profiles): refresh model profile data (#37122)

langchain==1.3.0

This release adds support for version="v3" in stream_events / astream_events for langchain agents. Refer to the event streaming guide for details.

... (truncated)

Commits
  • b6b769b release(langchain): 1.3.1 (#37454)
  • 36c381b fix(langchain): alias Bedrock providers in summarization token check (#37453)
  • 0831e44 docs(openai): document base_url env var fallback chain (#37436)
  • e208f38 chore: bump langsmith from 0.8.0 to 0.8.4 in /libs/partners/xai (#37411)
  • a4a2be9 chore: bump langsmith from 0.8.0 to 0.8.4 in /libs/partners/qdrant (#37412)
  • f5322d9 chore: bump langsmith from 0.8.0 to 0.8.4 in /libs/partners/perplexity (#37413)
  • 5d9ac69 chore: bump langsmith from 0.8.0 to 0.8.4 in /libs/partners/openrouter (#37414)
  • f42d80c fix(core): preserve chunk additional_kwargs across v3 stream assembly (#37435)
  • 649d82f fix(core): preserve reasoning blocks alongside tool_call in v3 stream (#37434)
  • 9f9a8a7 chore: bump langsmith from 0.8.0 to 0.8.4 in /libs/partners/ollama (#37415)
  • Additional commits viewable in compare view

Updates langchain-openai from 1.2.1 to 1.2.2

Release notes

Sourced from langchain-openai's releases.

langchain-openai==1.2.2

Changes since langchain-openai==1.2.1

release(openai): 1.2.2 (#37617) chore(infra): bump langchain-tests floor to 1.1.9 (#37610) test(openai): unbreak audio chat and Azure embedding integration tests (#37589) fix(openai): guard httpx finalizers (#37570) chore: bump langsmith from 0.8.4 to 0.8.5 in /libs/partners/openai (#37549) chore: bump idna from 3.11 to 3.15 in /libs/partners/openai (#37548) ci(infra): harden Dependabot version-bound preservation (#37510) test(standard-tests): assert ls_model_name honors per-call model override (#37504) fix(openai): source LLM context size from model profiles (#37489) chore(core,langchain,openai): refresh stale OpenAI model references (#37487) fix(openai): broaden condition for ContextOverflowError to accommodate other providers (#37457) docs(openai): document base_url env var fallback chain (#37436) chore: bump langsmith from 0.8.0 to 0.8.4 in /libs/partners/openai (#37416) chore: bump langsmith from 0.7.31 to 0.8.0 in /libs/partners/openai (#37398) chore(infra): merge v1.4 into master (#37350) chore: bump urllib3 from 2.6.3 to 2.7.0 in /libs/partners/openai (#37330) chore: bump langchain-core from 1.3.2 to 1.3.3 in /libs/partners/openai (#37266) chore(docs): update x handle references (#37081) chore(model-profiles): refresh model profile data (#37074) chore(docs): update comment for chatopenai (#37034) chore(model-profiles): refresh model profile data (#37015)

Commits
  • a1e2daf release(openai): 1.2.2 (#37617)
  • 9e21348 fix(openai): guard httpx finalizers against uninitialized instances (#37568)
  • 74cecb4 ci(infra): expand integration tests dispatch dropdown to external partners (#...
  • 269d628 fix(standard-tests): recognize parametrize-nested xfails in override check (#...
  • 23d369e test(xai): tolerate extra block types in web search and xfail v1 streaming to...
  • aef86c4 chore(infra): bump langchain-tests floor to 1.1.9 (#37610)
  • ebc1880 release(standard-tests): 1.1.9 (#37609)
  • 22575ad test(standard-tests): allow extra content blocks in streaming assertions (#37...
  • 1aa4496 feat(langchain): register stream transformers on middleware (#37591)
  • d2931d8 release(fireworks): 1.4.1 (#37603)
  • Additional commits viewable in compare view

Updates langchain-google-genai from 4.2.2 to 4.2.3

Release notes

Sourced from langchain-google-genai's releases.

langchain-google-genai==4.2.3

Changes since libs/genai/v4.2.2

release(genai): 4.2.3 (#1795) feat(genai): expose api_version (#1793) chore(model-profiles): refresh model profile data (#1792) chore: bump idna from 3.11 to 3.15 in /libs/genai (#1786) fix(genai): fix tests (#1785) chore(model-profiles): refresh model profile data (#1790) chore: bump langchain-core from 1.3.3 to 1.4.0 in /libs/genai (#1771) fix(genai, vertexai): reflect per-call model overrides in traces (#1774) chore: bump langchain-core from 1.3.2 to 1.3.3 in /libs/genai (#1758) docs(genai): fix deprecated safety settings documentation link (#1762) chore: bump urllib3 from 2.6.3 to 2.7.0 in /libs/genai (#1763) chore: bump langsmith from 0.7.31 to 0.8.0 in /libs/genai (#1769) chore(model-profiles): refresh model profile data (#1755) ci(infra): pass --release --extended in release pre-checks (#1739) chore: update mypy requirement from <1.20.0,>=1.18.1 to >=1.18.1,<1.21.0 in /libs/genai in the genai group (#1666) feat(genai,vertexai): validate video metadata offsets before API call (#1719) chore(model-profiles): refresh model profile data (#1715) chore: bump min version of langchain-core to 1.3.2 (#1717) chore: bump langsmith from 0.7.9 to 0.7.31 in /libs/genai (#1702) chore: bump pytest from 9.0.2 to 9.0.3 in /libs/genai (#1698) chore: bump pygments from 2.19.2 to 2.20.0 in /libs/genai (#1696)

Commits
  • 386705d release(genai): 4.2.3 (#1795)
  • c20e77a feat(genai): expose api_version (#1793)
  • bc5c013 chore(model-profiles): refresh model profile data (#1792)
  • 47d1974 chore: bump idna from 3.11 to 3.15 in /libs/community (#1788)
  • ec6d239 chore: bump idna from 3.11 to 3.15 in /libs/vertexai (#1787)
  • 64d6a95 chore: bump idna from 3.11 to 3.15 in /libs/genai (#1786)
  • a11533f fix(genai): fix tests (#1785)
  • 2902313 chore(model-profiles): refresh model profile data (#1790)
  • 8dd6701 chore: bump langchain-core from 1.3.3 to 1.4.0 in /libs/genai (#1771)
  • 817d252 fix(genai, vertexai): reflect per-call model overrides in traces (#1774)
  • Additional commits viewable in compare view

Updates google-auth from 2.52.0 to 2.53.0

Commits

Updates pytest-asyncio from 1.3.0 to 1.4.0

Release notes

Sourced from pytest-asyncio's releases.

pytest-asyncio v1.4.0

1.4.0 - 2026-05-26

Deprecated

  • Overriding the event_loop_policy fixture is deprecated. Use the pytest_asyncio_loop_factories hook instead. (#1419)

Added

  • Added the pytest_asyncio_loop_factories hook to parametrize asyncio tests with custom event loop factories.

    The hook returns a mapping of factory names to loop factories, and pytest.mark.asyncio(loop_factories=[...]) selects a subset of configured factories per test. When a single factory is configured, test names are unchanged.

    Synchronous @pytest_asyncio.fixture functions now see the correct event loop when custom loop factories are configured, even when test code disrupts the current event loop (e.g., via asyncio.run() or asyncio.set_event_loop(None)). (#1164)

Changed

  • Improved the readability of the warning message that is displayed when asyncio_default_fixture_loop_scope is unset (#1298)
  • Only import asyncio.AbstractEventLoopPolicy for type checking to avoid raising a DeprecationWarning. (#1394)
  • Updated minimum supported pytest version to v8.4.0. (#1397)

Fixed

  • Fixed a ResourceWarning: unclosed event loop warning that could occur when a synchronous test called asyncio.run() or otherwise unset the current event loop after pytest-asyncio had run an async test or fixture. (#724)

Notes for Downstream Packagers

  • Added dependency on sphinx-tabs >= 3.5 to organize documentation examples into tabs. (#1395)

pytest-asyncio v1.4.0a2

1.4.0a2 - 2026-05-02

Deprecated

  • Overriding the event_loop_policy fixture is deprecated. Use the pytest_asyncio_loop_factories hook instead. (#1419)

Added

  • Added the pytest_asyncio_loop_factories hook to parametrize asyncio tests with custom event loop factories.

    The hook returns a mapping of factory names to loop factories, and pytest.mark.asyncio(loop_factories=[...]) selects a subset of configured factories per test. When a single factory is configured, test names are unchanged on pytest 8.4+.

    Synchronous @pytest_asyncio.fixture functions now see the correct event loop when custom loop factories are configured, even when test code disrupts the current event loop (e.g., via asyncio.run() or asyncio.set_event_loop(None)). (#1164)

Changed

  • Improved the readability of the warning message that is displayed when asyncio_default_fixture_loop_scope is unset (#1298)
  • Only import asyncio.AbstractEventLoopPolicy for type checking to avoid raising a DeprecationWarning. (#1394)

... (truncated)

Commits
  • 6e14cd2 chore: Prepare release of v1.4.0.
  • 4b900fb Build(deps): Bump codecov/codecov-action from 6.0.0 to 6.0.1
  • ab9f632 Build(deps): Bump zipp from 3.23.1 to 4.1.0
  • a56fc77 Build(deps): Bump hypothesis from 6.152.6 to 6.152.8
  • e8bae9b Build(deps): Bump requests from 2.34.0 to 2.34.2
  • fc43340 Build(deps): Bump idna from 3.14 to 3.15
  • 762eaf5 Build(deps): Bump jaraco-functools from 4.4.0 to 4.5.0
  • b62e222 Build(deps): Bump click from 8.3.3 to 8.4.0
  • 9190447 Build(deps): Bump pydantic from 2.13.3 to 2.13.4
  • 82a393c ci: Remove unnecessary debug output.
  • Additional commits viewable in compare view

Updates basedpyright from 1.39.4 to 1.39.6

Commits
  • ad82d91 1.39.6
  • cf60738 fix vscode config for formatting markdown files now that we use two formatter...
  • 29e303a print stderr from npm commands when build fails
  • f133f3d uncomment some test code which started causing a test to fail. no idea why i ...
  • f71e96b remove python 3.9 check from TypeAlias4 test because typeshed has dropped s...
  • e4c40b7 fix tests
  • d7c522b ruff ignore new benchmarkData files from upstream
  • a7cf33d fix eslint in vscode
  • 14c96be fix logic for reporting invalid pythonPlatform detected by the new eslint v...
  • 280802c remove remnants of webpack
  • Additional commits viewable in compare view

Updates ruff from 0.15.12 to 0.15.14

Release notes

Sourced from ruff's releases.

0.15.14

Release Notes

Released on 2026-05-21.

Preview features

  • [airflow] Implement airflow-task-implicit-multiple-outputs (AIR202) (#25152)
  • [flake8-use-pathlib] Mark PTH101 fix as unsafe when first argument is a class attribute annotated as int (#25086)
  • [pylint] Implement too-many-try-statements (W0717) (#23970)
  • [ruff] Add incorrect-decorator-order (RUF074) (#23461)
  • [ruff] Add fallible-context-manager (RUF075) (#22844)

Bug fixes

  • Fix lambda formatting in interpolated string expressions (#25144)
  • Treat generic frozenset annotations as immutable (#25251)
  • [flake8-type-checking] Avoid strict behavior when future-annotations are enabled (TC001, TC002, TC003) (#25035)
  • [pylint] Avoid false positives in else clause (PLR1733) (#25177)

Rule changes

  • [flake8-comprehensions] Skip C417 for lambdas with positional-only parameters (#25272)
  • [flake8-simplify] Preserve f-string source verbatim in SIM101 fix (#25061)

Performance

  • Avoid unnecessary parser lookahead for operators (#25290)

Documentation

  • Update code example setting Neovim LSP log level (#25284)

Other changes

  • Add full PEP 798 support (#25104)
  • Add a parser recursion limit (#24810)
  • Update various ruff_python_stdlib APIs (#25273)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.14

Released on 2026-05-21.

Preview features

  • [airflow] Implement airflow-task-implicit-multiple-outputs (AIR202) (#25152)
  • [flake8-use-pathlib] Mark PTH101 fix as unsafe when first argument is a class attribute annotated as int (#25086)
  • [pylint] Implement too-many-try-statements (W0717) (#23970)
  • [ruff] Add incorrect-decorator-order (RUF074) (#23461)
  • [ruff] Add fallible-context-manager (RUF075) (#22844)

Bug fixes

  • Fix lambda formatting in interpolated string expressions (#25144)
  • Treat generic frozenset annotations as immutable (#25251)
  • [flake8-type-checking] Avoid strict behavior when future-annotations are enabled (TC001, TC002, TC003) (#25035)
  • [pylint] Avoid false positives in else clause (PLR1733) (#25177)

Rule changes

  • [flake8-comprehensions] Skip C417 for lambdas with positional-only parameters (#25272)
  • [flake8-simplify] Preserve f-string source verbatim in SIM101 fix (#25061)

Performance

  • Avoid unnecessary parser lookahead for operators (#25290)

Documentation

  • Update code example setting Neovim LSP log level (#25284)

Other changes

  • Add full PEP 798 support (#25104)
  • Add a parser recursion limit (#24810)
  • Update various ruff_python_stdlib APIs (#25273)

Contributors

... (truncated)

Commits
  • 9ad2da3 Bump 0.15.14 (#25295)
  • c714e84 [ty] Modernize setup of union types in mdtests (#25291)
  • 8a8e35e [flake8-comprehensions] Skip C417 for lambdas with positional-only parame...
  • aea5ed4 Avoid unnecessary parser lookahead for operators (#25290)
  • e9d72bb [ty] Allow enum member accesses on self (#25077)
  • 6cbd59b Set exclude-newer = "7 days" in our PEP-723 scripts (#25285)
  • 9999a39 Update code example on how to update Neovim LSP log level (#25284)
  • 67d8c54 [ty] Retain recursively-defined state in binary expressions (#25277)
  • 25a3191 [ty] Refine Callable class-decorator fallback for unknown results (#25250)
  • c423054 Add a recursion limit to the parser (#24810)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the python-uv-lock group across 1 directory with 7 updates
4618c74 
Bumps the python-uv-lock group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [langchain](https://github.com/langchain-ai/langchain) | `1.2.18` | `1.3.1` |
| [langchain-openai](https://github.com/langchain-ai/langchain) | `1.2.1` | `1.2.2` |
| [langchain-google-genai](https://github.com/langchain-ai/langchain-google) | `4.2.2` | `4.2.3` |
| [google-auth](https://github.com/googleapis/google-auth-library-python) | `2.52.0` | `2.53.0` |
| [pytest-asyncio](https://github.com/pytest-dev/pytest-asyncio) | `1.3.0` | `1.4.0` |
| [basedpyright](https://github.com/detachhead/basedpyright) | `1.39.4` | `1.39.6` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.12` | `0.15.14` |



Updates `langchain` from 1.2.18 to 1.3.1
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain==1.2.18...langchain==1.3.1)

Updates `langchain-openai` from 1.2.1 to 1.2.2
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-openai==1.2.1...langchain-openai==1.2.2)

Updates `langchain-google-genai` from 4.2.2 to 4.2.3
- [Release notes](https://github.com/langchain-ai/langchain-google/releases)
- [Commits](langchain-ai/langchain-google@libs/genai/v4.2.2...libs/genai/v4.2.3)

Updates `google-auth` from 2.52.0 to 2.53.0
- [Release notes](https://github.com/googleapis/google-auth-library-python/releases)
- [Changelog](https://github.com/googleapis/google-auth-library-python/blob/main/CHANGELOG.md)
- [Commits](https://github.com/googleapis/google-auth-library-python/commits)

Updates `pytest-asyncio` from 1.3.0 to 1.4.0
- [Release notes](https://github.com/pytest-dev/pytest-asyncio/releases)
- [Commits](pytest-dev/pytest-asyncio@v1.3.0...v1.4.0)

Updates `basedpyright` from 1.39.4 to 1.39.6
- [Release notes](https://github.com/detachhead/basedpyright/releases)
- [Commits](DetachHead/basedpyright@v1.39.4...v1.39.6)

Updates `ruff` from 0.15.12 to 0.15.14
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.12...0.15.14)

---
updated-dependencies:
- dependency-name: langchain
  dependency-version: 1.3.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-uv-lock
- dependency-name: langchain-openai
  dependency-version: 1.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-uv-lock
- dependency-name: langchain-google-genai
  dependency-version: 4.2.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-uv-lock
- dependency-name: google-auth
  dependency-version: 2.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-uv-lock
- dependency-name: pytest-asyncio
  dependency-version: 1.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python-uv-lock
- dependency-name: basedpyright
  dependency-version: 1.39.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python-uv-lock
- dependency-name: ruff
  dependency-version: 0.15.14
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python-uv-lock
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels May 26, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants