Lock file maintenance Python dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
		lockFileMaintenance	All locks refreshed
boto3	integration	patch	^1.34.118 -> ^1.34.130
boto3	dependencies	patch	^1.34.118 -> ^1.34.130
cosl	charm-libs	patch	0.0.11 -> 0.0.12
cosl	dependencies	patch	^0.0.11 -> ^0.0.12
cryptography (changelog)	dependencies	patch	^42.0.7 -> ^42.0.8
lightkube	integration	patch	^0.15.2 -> ^0.15.3
lightkube	dependencies	patch	^0.15.2 -> ^0.15.3
ops (changelog)	charm-libs	minor	2.12.0 -> 2.14.0
ops (changelog)	dependencies	minor	^2.12.0 -> ^2.14.0
pydantic (changelog)	unit	patch	^1.10.15 -> ^1.10.16
pydantic (changelog)	charm-libs	patch	1.10.15 -> 1.10.16
pydantic (changelog)	dependencies	patch	^1.10.15 -> ^1.10.16
ruff (source, changelog)	format	patch	^0.4.7 -> ^0.4.9
tenacity	integration	minor	^8.3.0 -> ^8.4.1
tenacity	dependencies	minor	^8.3.0 -> ^8.4.1

🔧 This Pull Request updates lock files to use the latest dependency versions.

---

Release Notes

boto/boto3 (boto3)

v1.34.130

Compare Source

========

• api-change:artifact: [botocore] This release adds an acceptanceType field to the ReportSummary structure (used in the ListReports API response).
• api-change:athena: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:cur: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:directconnect: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:elastictranscoder: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:opensearch: [botocore] This release enables customers to use JSON Web Tokens (JWT) for authentication on their Amazon OpenSearch Service domains.

v1.34.129

Compare Source

========

• api-change:bedrock-runtime: [botocore] This release adds support for using Guardrails with the Converse and ConverseStream APIs.
• api-change:cloudtrail: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:config: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:eks: [botocore] This release adds support to surface async fargate customer errors from async path to customer through describe-fargate-profile API response.
• api-change:lightsail: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:polly: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:rekognition: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:sagemaker: [botocore] Launched a new feature in SageMaker to provide managed MLflow Tracking Servers for customers to track ML experiments. This release also adds a new capability of attaching additional storage to SageMaker HyperPod cluster instances.
• api-change:shield: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:snowball: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.

v1.34.128

Compare Source

========

• api-change:acm-pca: [botocore] Doc-only update that adds name constraints as an allowed extension for ImportCertificateAuthorityCertificate.
• api-change:batch: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:codebuild: [botocore] AWS CodeBuild now supports global and organization GitHub webhooks
• api-change:cognito-idp: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:ds: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:efs: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• api-change:glue: [botocore] This release introduces a new feature, Usage profiles. Usage profiles allow the AWS Glue admin to create different profiles for various classes of users within the account, enforcing limits and defaults for jobs and sessions.
• api-change:mediaconvert: [botocore] This release includes support for creating I-frame only video segments for DASH trick play.
• api-change:secretsmanager: [botocore] Doc only update for Secrets Manager
• api-change:waf: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.

v1.34.127

Compare Source

========

• api-change:datazone: [botocore] This release introduces a new default service blueprint for custom environment creation.
• api-change:ec2: [botocore] Documentation updates for Amazon EC2.
• api-change:macie2: [botocore] This release adds support for managing the status of automated sensitive data discovery for individual accounts in an organization, and determining whether individual S3 buckets are included in the scope of the analyses.
• api-change:mediaconvert: [botocore] This release adds the ability to search for historical job records within the management console using a search box and/or via the SDK/CLI with partial string matching search on input file name.
• api-change:route53domains: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.

v1.34.126

Compare Source

========

• api-change:cloudhsmv2: [botocore] Added support for hsm type hsm2m.medium. Added supported for creating a cluster in FIPS or NON_FIPS mode.
• api-change:glue: [botocore] This release adds support for configuration of evaluation method for composite rules in Glue Data Quality rulesets.
• api-change:iotwireless: [botocore] Add RoamingDeviceSNR and RoamingDeviceRSSI to Customer Metrics.
• api-change:kms: [botocore] This feature allows customers to use their keys stored in KMS to derive a shared secret which can then be used to establish a secured channel for communication, provide proof of possession, or establish trust with other parties.
• api-change:mediapackagev2: [botocore] This release adds support for CMAF ingest (DASH-IF live media ingest protocol interface 1)

v1.34.125

Compare Source

========

• api-change:apptest: [botocore] AWS Mainframe Modernization Application Testing is an AWS Mainframe Modernization service feature that automates functional equivalence testing for mainframe application modernization and migration to AWS, and regression testing.
• api-change:backupstorage: [botocore] The backupstorage client has been removed following the deprecation of the service.
• api-change:ec2: [botocore] Tagging support for Traffic Mirroring FilterRule resource
• api-change:osis: [botocore] SDK changes for self-managed vpc endpoint to OpenSearch ingestion pipelines.
• api-change:redshift: [botocore] Updates to remove DC1 and DS2 node types.
• api-change:secretsmanager: [botocore] Introducing RotationToken parameter for PutSecretValue API
• api-change:securitylake: [botocore] This release updates request validation regex to account for non-commercial aws partitions.
• api-change:sesv2: [botocore] This release adds support for Amazon EventBridge as an email sending events destination.

v1.34.124

Compare Source

========

• api-change:accessanalyzer: [botocore] IAM Access Analyzer now provides policy recommendations to help resolve unused permissions for IAM roles and users. Additionally, IAM Access Analyzer now extends its custom policy checks to detect when IAM policies grant public access or access to critical resources ahead of deployments.
• api-change:guardduty: [botocore] Added API support for GuardDuty Malware Protection for S3.
• api-change:networkmanager: [botocore] This is model changes & documentation update for Service Insertion feature for AWS Cloud WAN. This feature allows insertion of AWS/3rd party security services on Cloud WAN. This allows to steer inter/intra segment traffic via security appliances and provide visibility to the route updates.
• api-change:pca-connector-scep: [botocore] Connector for SCEP allows you to use a managed, cloud CA to enroll mobile devices and networking gear. SCEP is a widely-adopted protocol used by mobile device management (MDM) solutions for enrolling mobile devices. With the connector, you can use AWS Private CA with popular MDM solutions.
• api-change:sagemaker: [botocore] Introduced Scope and AuthenticationRequestExtraParams to SageMaker Workforce OIDC configuration; this allows customers to modify these options for their private Workforce IdP integration. Model Registry Cross-account model package groups are discoverable.

v1.34.123

Compare Source

========

• api-change:application-signals: [botocore] This is the initial SDK release for Amazon CloudWatch Application Signals. Amazon CloudWatch Application Signals provides curated application performance monitoring for developers to monitor and troubleshoot application health using pre-built dashboards and Service Level Objectives.
• api-change:ecs: [botocore] This release introduces a new cluster configuration to support the customer-managed keys for ECS managed storage encryption.
• api-change:imagebuilder: [botocore] This release updates the regex pattern for Image Builder ARNs.

v1.34.122

Compare Source

========

• api-change:auditmanager: [botocore] New feature: common controls. When creating custom controls, you can now use pre-grouped AWS data sources based on common compliance themes. Also, the awsServices parameter is deprecated because we now manage services in scope for you. If used, the input is ignored and an empty list is returned.
• api-change:b2bi: [botocore] Added exceptions to B2Bi List operations and ConflictException to B2Bi StartTransformerJob operation. Also made capabilities field explicitly required when creating a Partnership.
• api-change:codepipeline: [botocore] CodePipeline now supports overriding S3 Source Object Key during StartPipelineExecution, as part of Source Overrides.
• api-change:sagemaker: [botocore] This release introduces a new optional parameter: InferenceAmiVersion, in ProductionVariant.
• api-change:verifiedpermissions: [botocore] This release adds OpenIdConnect (OIDC) configuration support for IdentitySources, allowing for external IDPs to be used in authorization requests.

v1.34.121

Compare Source

========

• api-change:account: [botocore] This release adds 3 new APIs (AcceptPrimaryEmailUpdate, GetPrimaryEmail, and StartPrimaryEmailUpdate) used to centrally manage the root user email address of member accounts within an AWS organization.
• api-change:alexaforbusiness: [botocore] The alexaforbusiness client has been removed following the deprecation of the service.
• api-change:firehose: [botocore] Adds integration with Secrets Manager for Redshift, Splunk, HttpEndpoint, and Snowflake destinations
• api-change:fsx: [botocore] This release adds support to increase metadata performance on FSx for Lustre file systems beyond the default level provisioned when a file system is created. This can be done by specifying MetadataConfiguration during the creation of Persistent_2 file systems or by updating it on demand.
• api-change:glue: [botocore] This release adds support for creating and updating Glue Data Catalog Views.
• api-change:honeycode: [botocore] The honeycode client has been removed following the deprecation of the service.
• api-change:iotwireless: [botocore] Adds support for wireless device to be in Conflict FUOTA Device Status due to a FUOTA Task, so it couldn't be attached to a new one.
• api-change:location: [botocore] Added two new APIs, VerifyDevicePosition and ForecastGeofenceEvents. Added support for putting larger geofences up to 100,000 vertices with Geobuf fields.
• api-change:sns: [botocore] Doc-only update for SNS. These changes include customer-reported issues and TXC3 updates.
• api-change:sqs: [botocore] Doc only updates for SQS. These updates include customer-reported issues and TCX3 modifications.
• api-change:storagegateway: [botocore] Adds SoftwareUpdatePreferences to DescribeMaintenanceStartTime and UpdateMaintenanceStartTime, a structure which contains AutomaticUpdatePolicy.
• enhancement:AWSCRT: [botocore] Update awscrt version to 0.20.11

v1.34.120

Compare Source

========

• api-change:globalaccelerator: [botocore] This release contains a new optional ip-addresses input field for the update accelerator and update custom routing accelerator apis. This input enables consumers to replace IPv4 addresses on existing accelerators with addresses provided in the input.
• api-change:glue: [botocore] AWS Glue now supports native SaaS connectivity: Salesforce connector available now
• api-change:s3: [botocore] Added new params copySource and key to copyObject API for supporting S3 Access Grants plugin. These changes will not change any of the existing S3 API functionality.

v1.34.119

Compare Source

========

• api-change:ec2: [botocore] U7i instances with up to 32 TiB of DDR5 memory and 896 vCPUs are now available. C7i-flex instances are launched and are lower-priced variants of the Amazon EC2 C7i instances that offer a baseline level of CPU performance with the ability to scale up to the full compute performance 95% of the time.
• api-change:pipes: [botocore] This release adds Timestream for LiveAnalytics as a supported target in EventBridge Pipes
• api-change:sagemaker: [botocore] Extend DescribeClusterNode response with private DNS hostname and IP address, and placement information about availability zone and availability zone ID.
• api-change:taxsettings: [botocore] Initial release of AWS Tax Settings API

canonical/cos-lib (cosl)

v0.0.12: LokiHandler

• Added a loki_logger.LokiHandler object that sends logs to a loki push api endpoint.

pyca/cryptography (cryptography)

v42.0.8

Compare Source

canonical/operator (ops)

v2.14.0

Compare Source

Features

• Add a __str__ to ActionFailed, for better unexpected failure output (#​1209)

Fixes

• The other argument to RelatationDataContent.update(...) should be optional (#​1226)

Documentation

• Use the actual emoji character rather than GitHub markup, to show properly on PyPI (#​1221)
• Clarify that SecretNotFound may be raised for permission errors (#​1231)

Refactoring

• Refactor tests to pytest style (#​1199, #​1200, #​1203, #​1206)
• Use ruff formatter and reformat all code (#​1224)
• Don't use f-strings in logging calls (#​1227, 1234)

v2.13.0

Compare Source

Features

• Added support for user secrets in Harness (#​1176)

Fixes

• Corrected the model config types (#​1183)
• In Harness, only inspect the source file if it will be used - this fixed using Harness in a Python REPL (#​1181)

Documentation

• Updated publishing a release in HACKING.md (#​1173)
• Added tox -e docs-deps to compile requirements.txt (#​1172)
• Updated doc to note deprecated functionality in (#​1178)

Tests

• First stage of converting tests from unittest to pytest (#​1191, #​1192, #​1196, #​1193, #​1195)
• Added pebble.CheckInfo.change_id field (#​1197)

pydantic/pydantic (pydantic)

v1.10.16

Compare Source

• Specify recursive_guard as kwarg in FutureRef._evaluate by @​vfazio in https://github.com/pydantic/pydantic/pull/9612
• Fix mypy v1 plugin for upcoming mypy release by @​ cdcehttps://github.com/pydantic/pydantic/pull/9586l/9586
• Import modules/objects directly from v1 namespace by @​exs-dwoodward in https://github.com/pydantic/pydantic/pull/9162

astral-sh/ruff (ruff)

v0.4.9

Compare Source

Preview features

• [pylint] Implement consider-dict-items (C0206) (#​11688)
• [refurb] Implement repeated-global (FURB154) (#​11187)

Rule changes

• [pycodestyle] Adapt fix for E203 to work identical to ruff format (#​10999)

Formatter

• Fix formatter instability for lines only consisting of zero-width characters (#​11748)

Server

• Add supported commands in server capabilities (#​11850)
• Use real file path when available in ruff server (#​11800)
• Improve error message when a command is run on an unavailable document (#​11823)
• Introduce the ruff.printDebugInformation command (#​11831)
• Tracing system now respects log level and trace level, with options to log to a file (#​11747)

CLI

• Handle non-printable characters in diff view (#​11687)

Bug fixes

• [refurb] Avoid suggesting starmap when arguments are used outside call (FURB140) (#​11830)
• [flake8-bugbear] Avoid panic in B909 when checking large loop blocks (#​11772)
• [refurb] Fix misbehavior of operator.itemgetter when getter param is a tuple (FURB118) (#​11774)

v0.4.8

Compare Source

Performance

• Linter performance has been improved by around 10% on some microbenchmarks by refactoring the lexer and parser to maintain synchronicity between them (#​11457)

Preview features

• [flake8-bugbear] Implement return-in-generator (B901) (#​11644)
• [flake8-pyi] Implement PYI063 (#​11699)
• [pygrep_hooks] Check blanket ignores via file-level pragmas (PGH004) (#​11540)

Rule changes

• [pyupgrade] Update UP035 for Python 3.13 and the latest version of typing_extensions (#​11693)
• [numpy] Update NPY001 rule for NumPy 2.0 (#​11735)

Server

• Formatting a document with syntax problems no longer spams a visible error popup (#​11745)

CLI

• Add RDJson support for --output-format flag (#​11682)

Bug fixes

• [pyupgrade] Write empty string in lieu of panic when fixing UP032 (#​11696)
• [flake8-simplify] Simplify double negatives in SIM103 (#​11684)
• Ensure the expression generator adds a newline before type statements (#​11720)
• Respect per-file ignores for blanket and redirected noqa rules (#​11728)

jd/tenacity (tenacity)

v8.4.1: tenacity 8.4.1

Compare Source

What's Changed

• Include tenacity.asyncio subpackage in release dist by @​cdce8p in https://github.com/jd/tenacity/pull/474

Full Changelog: jd/tenacity@8.4.0...8.4.1

v8.4.0: tenacity 8.4.0

Compare Source

What's Changed

• Add async strategies by @​hasier in https://github.com/jd/tenacity/pull/451
• Support Trio out-of-the-box by @​jakkdl in https://github.com/jd/tenacity/pull/463

Full Changelog: jd/tenacity@8.3.0...8.4.0

---

Configuration

📅 Schedule: Branch creation - "after 1am and before 3am every weekday" in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 70.19%. Comparing base (2082190) to head (4bdd70a).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #498   +/-   ##
=======================================
  Coverage   70.19%   70.19%           
=======================================
  Files          10       10           
  Lines        2775     2775           
  Branches      516      516           
=======================================
  Hits         1948     1948           
  Misses        729      729           
  Partials       98       98           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.