Deps: Bump the python-packages group with 7 updates

[dependabot]

Updates the requirements on paramiko, lxml, coverage, sphinx, autohooks-plugin-ruff, autohooks-plugin-mypy and furo to permit the latest version.
Updates paramiko to 4.0.0

Commits

• aad0370 Cut 4.0.0 in changelog
• 76f2406 Speling
• 8c4277c Fix syntax-warning-throwing unittest method call
• d3a9617 Test existence of root module dunder version
• 9579700 Nuke mentions of specific Python 3.x versions from docs etc
• dbfd52c Administrivia update: Python>=3.9, pyproject.toml, etc
• c2ba378 Remove outdated version check in GSS module
• 2af0dd7 I'm good at my job, honest
• e534b1a Fixes #973: remove DSA/DSS support
• 3523feb Tweak .gitignore to more safely ignore top level docs/
• Additional commits viewable in compare view

Updates lxml to 6.0.4

Changelog

Sourced from lxml's changelog.

6.0.4 (2026-04-12)

Bugs fixed

• LP#2148019: Spurious MemoryError during namespace cleanup.

6.0.3 (2026-04-09)

Bugs fixed

• Several out of memory error cases now raise MemoryError that were not handled before.

• Slicing with large step values (outside of +/- sys.maxsize) could trigger undefined C behaviour.

• LP#2125399: Some failing tests were fixed or disabled in PyPy.

• LP#2138421: Memory leak in error cases when setting the public_id or system_url of a document.

• Memory leak in case of a memory allocation failure when copying document subtrees.

• When mapping an XPath result to Python failed, the result memory could leak.

• When preparing an XSLT transform failed, the XSLT parameter memory could leak.

Other changes

• Built using Cython 3.2.4.

• Binary wheels use zlib 1.3.2.

6.0.2 (2025-09-21)

Bugs fixed

• LP#2125278: Compilation with libxml2 2.15.0 failed. Original patch by Xi Ruoyao.

• Setting decompress=True in the parser had no effect in libxml2 2.15.

• Binary wheels on Linux and macOS use the library version libxml2 2.14.6. See https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.14.6

... (truncated)

Commits

• 1fd1d6b Fix release date.
• 5154859 CI: Include all library versions in libs cache key to asssure updated on vers...
• 6a606f3 Add "doesn't crash" tests for LP#2148019.
• f488f16 Prepare release of 6.0.4.
• 1255d98 LP#2148019: Prevent spurious MemoryError during namespace cleanup.
• 03b0c4a Remove dead type check.
• a6f833c Fix release date.
• 973d059 Update changelog.
• 9044a52 Build: Downgrade libiconv to 1.18 since 1.19 does not build reliably.
• a34dfdd Build: Upgrade libiconv to 1.19.
• Additional commits viewable in compare view

Updates coverage to 7.13.5

Changelog

Sourced from coverage's changelog.

Version 7.13.5 — 2026-03-17

• Fix: issue 2138_ describes a memory leak that happened when repeatedly using the Coverage API with in-memory data. This is now fixed.

• Fix: the markdown-formatted coverage report didn't fully escape special characters in file paths (issue 2141). This would be very unlikely to cause a problem, but now it's done properly, thanks to Ellie Ayla <pull 2142_>.

• Fix: the C extension wouldn't build on VS2019, but now it does (issue 2145_).

.. _issue 2138: coveragepy/coveragepy#2138 .. _issue 2141: coveragepy/coveragepy#2141 .. _pull 2142: coveragepy/coveragepy#2142 .. _issue 2145: coveragepy/coveragepy#2145

.. _changes_7-13-4:

Version 7.13.4 — 2026-02-09

• Fix: the third-party code fix in 7.13.3 required examining the parent directories where coverage was run. In the unusual situation that one of the parent directories is unreadable, a PermissionError would occur, as described in issue 2129_. This is now fixed.

• Fix: in test suites that change sys.path, coverage.py could fail with "RuntimeError: Set changed size during iteration" as described and fixed in pull 2130_. Thanks, Noah Fatsi.

• We now publish ppc64le wheels, thanks to Pankhudi Jain <pull 2121_>_.

.. _pull 2121: coveragepy/coveragepy#2121 .. _issue 2129: coveragepy/coveragepy#2129 .. _pull 2130: coveragepy/coveragepy#2130

.. _changes_7-13-3:

Version 7.13.3 — 2026-02-03

• Fix: in some situations, third-party code was measured when it shouldn't have been, slowing down test execution. This happened with layered virtual environments such as uv sometimes makes. The problem is fixed, closing issue 2082_. Now any directory on sys.path that is inside a virtualenv is considered third-party code.

... (truncated)

Commits

• c88da14 docs: sample HTML for 7.13.5
• e2ac3e1 build: sample HTML shouldn't include the status.json file
• 910f8f3 docs: prep for 7.13.5
• 3a4819c style: make workflows more uniform
• 2a53705 chore: bump the action-dependencies group across 1 directory with 4 updates (...
• e7c878d chore: make upgrade
• ab4db40 build: use --generate-hashes when pinning
• a438753 chore: make upgrade
• 7b33457 refactor: some leftover pyupgrade 3.10 bits
• 2ff968d refactor: this type wasn't used anywhere
• Additional commits viewable in compare view

Updates sphinx to 8.1.3

Release notes

Sourced from sphinx's releases.

Sphinx 8.1.3

Changelog: https://www.sphinx-doc.org/en/master/changes/8.1.html

Bugs fixed

• #13013: Restore support for cut_lines() with no object type. Patch by Adam Turner.

Changelog

Sourced from sphinx's changelog.

Release 8.1.3 (released Oct 13, 2024)

Bugs fixed

• #13013: Restore support for :func:!cut_lines with no object type. Patch by Adam Turner.

Release 8.1.2 (released Oct 12, 2024)

Bugs fixed

• #13012: Expose :exc:sphinx.errors.ExtensionError in sphinx.util for backwards compatibility. This will be removed in Sphinx 9, as exposing the exception in sphinx.util was never intentional. :exc:!ExtensionError has been part of sphinx.errors since Sphinx 0.9. Patch by Adam Turner.

Release 8.1.1 (released Oct 11, 2024)

Bugs fixed

• #13006: Use the preferred https://www.cve.org/ URL for the :rst:role::cve: <cve> role. Patch by Hugo van Kemenade.
• #13007: LaTeX: Improve resiliency when the required fontawesome or fontawesome5 packages are not installed. Patch by Jean-François B.

Release 8.1.0 (released Oct 10, 2024)

Dependencies

• #12756: Add lower-bounds to the sphinxcontrib-* dependencies. Patch by Adam Turner.
• #12833: Update the LaTeX parskip package from 2001 to 2018. Patch by Jean-François B.

Incompatible changes

• #12763: Remove unused internal class sphinx.util.Tee.

... (truncated)

Commits

• a1510de Bump to 8.1.3 final
• 62e9606 Restore support for cut_lines() with no object type (#13015)
• 5ae32ce Bump version
• a72b47b Bump to 8.1.2 final
• 39a45ad Expose ExtensionError in sphinx.util for backwards compatibility.
• 5a4859a Add docs about sphinx-autobuild (#13011)
• 05679ef Type-check the 'autodoc_intenum' example (#12827)
• 86d1d31 Prune CHANGES of unneeded sections
• b6269d3 Improve documentation for the Builder API (#13008)
• c46abc4 Improve clarity for master_doc and root_doc
• Additional commits viewable in compare view

Updates autohooks-plugin-ruff to 25.3.1

Release notes

Sourced from autohooks-plugin-ruff's releases.

autohooks-plugin-ruff 25.3.1

25.3.1 - 2025-03-12

Commits

• 00c89ea Automatic release to 25.3.1
• 6e04389 Fixed typo in repo URL
• 378724f Automatic adjustments after release [skip ci]
• 873ad36 Automatic release to 25.3.0
• dde6294 Deps: Bump the python-packages group with 2 updates
• 914c22e Deps: Bump ruff from 0.9.7 to 0.9.9 in the python-packages group
• 1cdd8cf Deps: Bump ruff from 0.9.6 to 0.9.7 in the python-packages group
• 4ff5cdb Deps: Bump the python-packages group with 3 updates
• 0d0aeaa Deps: Bump the python-packages group with 2 updates
• 930d35b Automatic adjustments after release [skip ci]
• See full diff in compare view

Updates autohooks-plugin-mypy to 23.10.0

Release notes

Sourced from autohooks-plugin-mypy's releases.

autohooks-plugin-mypy 23.10.0

23.10.0 - 2023-10-18

Added

• Auto-merge workflow, to enable squash auto-merge in open PRs (#66) 1d0c887
• Add action for reporting the conventional commits ac1fa90
• Add coverage as dev dependency 89e4e5c

Changed

• Update supported Python versions (#69) 8de2f7b
• Group dependabot updates fef898c
• Use generic reusable workflows b51a6a7
• Create conventional commits for dependabot 9000ba9
• Resolve deprecation warnings in GitHub workflows 0981783
• Use new pypi-upload action for releasing the Python package 09642a5

Bug Fixes

• Fix conventional commits workflow f51c796
• Set permission on conventional commits workflow (#26) 5f2c6ac

Dependencies

• Bump the python-packages group with 1 update (#68) c9951bc
• Bump the python-packages group with 4 updates (#67) 73ee696
• Bump the python-packages group with 1 update (#65) b474682
• Bump the github-actions group with 1 update 739751b
• Bump the python-packages group with 1 update 408d437
• Bump platformdirs from 3.5.3 to 3.10.0 d91cbb7
• Bump dill from 0.3.6 to 0.3.7 (#59) 58b3a08
• Bump exceptiongroup from 1.1.1 to 1.1.3 (#56) 021a01d
• Bump typed-ast from 1.5.4 to 1.5.5 (#55) 5715d79
• Bump tomlkit from 0.11.8 to 0.12.1 (#53) bddbcab
• Bump pathspec from 0.11.1 to 0.11.2 (#51) 7696861
• Bump certifi from 2023.5.7 to 2023.7.22 (#50) 60e1bec
• Bump pylint from 2.17.4 to 2.17.5 (#54) e068fdf
• Bump anyio from 3.7.0 to 3.7.1 (#49) a01dbbe
• Bump pygments from 2.15.1 to 2.16.1 (#48) 094a8ee
• Bump click from 8.1.3 to 8.1.7 (#47) d9efc40
• Bump rich from 13.4.1 to 13.5.2 (#52) e04603f
• Bump astroid from 2.15.5 to 2.15.6 (#46) e4b42ec
• Bump importlib-metadata from 6.6.0 to 6.7.0 (#45) 3927788
• Bump greenbone/actions from 2 to 3 3d78e9d
• Bump mypy from 1.3.0 to 1.4.1 81541fc
• Bump platformdirs from 3.5.1 to 3.5.3 f35ac3e
• Bump rich from 13.3.5 to 13.4.1 d5adcfe
• Bump typing-extensions from 4.6.2 to 4.6.3 25b4353
• Bump coverage from 7.2.5 to 7.2.7 6094002

Commits

• 6b64354 Automatic release to 23.10.0
• 8de2f7b Change: Update supported Python versions (#69)
• c9951bc Deps: Bump the python-packages group with 1 update (#68)
• 73ee696 Deps: Bump the python-packages group with 4 updates (#67)
• 1d0c887 Add: Auto-merge workflow, to enable squash auto-merge in open PRs (#66)
• b474682 Deps: Bump the python-packages group with 1 update (#65)
• 739751b Deps: Bump the github-actions group with 1 update
• 408d437 Deps: Bump the python-packages group with 1 update
• fef898c Change: Group dependabot updates
• d91cbb7 Deps: Bump platformdirs from 3.5.3 to 3.10.0
• Additional commits viewable in compare view

Updates furo to 2025.12.19

Release notes

Sourced from furo's releases.

2025.12.19

• Bump the supported Sphinx version range

Full Changelog: pradyunsg/furo@2025.09.25...2025.12.19

Changelog

Sourced from furo's changelog.

2025.12.19 -- Harmonious Honeydew

• ✨ Add support for Sphinx 9.
• Drop support for Sphinx 6.

2025.09.25 -- Gleaming Green

• Change the dark mode code back to native.

2025.07.19 -- Frozen Flame

• ✨ Switch to accessible-pygments themes
• ✨ Prefetch the sidebar logos
• ✨ Fix flickering header drop shadow on Safari
• Add rel=edit attribute to "Edit this page" link/icon
• Bump NodeJS and npm dependency versions
• Bump Saas & Webpack major versions
• Improve current page detection to be resilient to sticky elements above header
• Modernise Sass and use @use + @forward
• Remove top of code border-radius with captions
• Remove "debug printf" for headerTop value
• Use distinct images for light and dark mode in the documentation
• Use the modern Saas Modules

2024.08.06 -- Energetic Eminence

• ✨ Add support for Sphinx 8
• ✨ Add smoother transitions between breakpoints
• Increase specificity of table-wrapper selector
• Avoid page breaks inside paragraphs

2024.07.18 -- Dull Denim

• Improve how icons are handled and aligned.
• Improve scroll event handler.
• Hide the copybutton by default.
• Fix source_view_link configuration handling.
• Fix close tag on pencil icon.

2024.05.06 -- Cheerful Cerulean

• ✨ Add new custom icons for auto mode, reflecting the currently active theme.
• ✨ Add a view this page button.
• ✨ Add colours and highlighting to "version modified" API helpers.
• ✨ Add release information to various customisation knobs.
• Make all icons bigger and use a thinner stroke with them.

2024.04.27 -- Bold Burgundy

• Add a skip to content link.

... (truncated)

Commits

• dd9e9f9 Prepare release: 2025.12.19
• d43f7e9 Update changelog
• d27cab5 Bump the supported Sphinx version range
• 12f288e Back to development
• 7c5f8fa Prepare release: 2025.09.25
• 8bfdc54 Update changelog
• d92b62f Switch the dark mode theme back to native
• 83c3446 Add Blender to "used by" section (#898)
• 426ea05 Remove old scrollbar selectors (#892)
• d22d31c Remove trailing slash on void elements (#895)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ❌ 2 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 2 package(s) with unknown licenses.

See the Details below.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA c74b077.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

License Issues

uv.lock

Package	Version	License	Issue Type
sphinx	8.1.3	BSD-2-Clause AND BSD-2-Clause-Views AND BSD-3-Clause	Incompatible License
sphinx	8.2.3	BSD-2-Clause-Views AND BSD-3-Clause AND BSD-2-Clause	Incompatible License
lxml	6.0.4	Null	Unknown License

pyproject.toml

Package	Version	License	Issue Type
paramiko	>= 4.0.0	Null	Unknown License

Allowed Licenses:

0BSD, AGPL-3.0-or-later, Apache-2.0, BlueOak-1.0.0, BSD-2-Clause, BSD-3-Clause-Clear, BSD-3-Clause, BSL-1.0, bzip2-1.0.6, CAL-1.0, CC-BY-3.0, CC-BY-4.0, CC-BY-SA-4.0, CC0-1.0, EPL-2.0, GPL-1.0-or-later, GPL-2.0-only, GPL-2.0-or-later, GPL-2.0, GPL-3.0-only, GPL-3.0-or-later, GPL-3.0, ISC, LGPL-2.0-only, LGPL-2.0-or-later, LGPL-2.1-only, LGPL-2.1-or-later, LGPL-2.1, LGPL-3.0-only, LGPL-3.0, LGPL-3.0-or-later, MIT, MIT-CMU, MPL-1.1, MPL-2.0, OFL-1.1, PSF-2.0, Python-2.0, Python-2.0.1, Unicode-3.0, Unicode-DFS-2016, Unlicense, Zlib, ZPL-2.1

OpenSSF Scorecard

Package	Version	Score	Details
pip/paramiko	>= 4.0.0	Unknown	Unknown
pip/coverage	7.13.5	Unknown	Unknown
pip/lxml	6.0.4	Unknown	Unknown
pip/roman-numerals	4.1.0	Unknown	Unknown
pip/roman-numerals-py	4.1.0	Unknown	Unknown
pip/sphinx	8.1.3	Unknown	Unknown
pip/sphinx	8.2.3	Unknown	Unknown

Scanned Files

• pyproject.toml
• uv.lock

[github-actions]

Conventional Commits Report

Type	Number
Dependencies	1

🚀 Conventional commits found.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 98.23%. Comparing base (aa177b5) to head (c74b077).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1322   +/-   ##
=======================================
  Coverage   98.23%   98.23%           
=======================================
  Files          90       90           
  Lines        6245     6245           
  Branches     1128     1128           
=======================================
  Hits         6135     6135           
  Misses         77       77           
  Partials       33       33           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml