Update Python dependencies (main)

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
boto3	^1.42.62 → ^1.42.69
ruff (source, changelog)	^0.15.5 → ^0.15.6

---

Release Notes

boto/boto3 (boto3)

v1.42.69

Compare Source

=======

• api-change:bedrock: [botocore] You can now generate policy scenarios on demand using the new GENERATE POLICY SCENARIOS build workflow type. Scenarios will no longer be automatically generated during INGEST CONTENT, REFINE POLICY, and IMPORT POLICY workflows, resulting in faster completion times for these operations.
• api-change:bedrock-agentcore: [botocore] Provide support to perform deterministic operations on agent runtime through shell command executions via the new InvokeAgentRuntimeCommand API
• api-change:bedrock-agentcore-control: [botocore] Supporting hosting of public ECR Container Images in AgentCore Runtime
• api-change:ecs: [botocore] Amazon ECS now supports configuring whether tags are propagated to the EC2 Instance Metadata Service (IMDS) for instances launched by the Managed Instances capacity provider. This gives customers control over tag visibility in IMDS when using ECS Managed Instances.

v1.42.68

Compare Source

=======

• api-change:apigateway: [botocore] API Gateway now supports an additional security policy "SecurityPolicy-TLS13-1-2-FIPS-PFS-PQ-2025-09" for REST APIs and custom domain names. The new policy is compliant with TLS 1.3, Federal Information Processing Standards (FIPS), Perfect Forward Secrecy (PFS), and post-quantum (PQ) cryptography
• api-change:config: [botocore] Fix pagination support for DescribeConformancePackCompliance, and update OrganizationConfigRule InputParameters max length to match ConfigRule.
• api-change:connect: [botocore] Deprecating PredefinedNotificationID field
• api-change:gameliftstreams: [botocore] Feature launch that enables customers to connect streaming sessions to their own VPCs running in AWS.
• api-change:glue: [botocore] Add QuerySessionContext to BatchGetPartitionRequest
• api-change:ivs-realtime: [botocore] Updates maximum reconnect window seconds from 60 to 300 for participant replication
• api-change:mediaconvert: [botocore] This update adds support for Dolby AC-4 audio output, frame rate conversion between non-Dolby Vision inputs to Dolby Vision outputs, and clear lead CMAF HLS output.
• api-change:medialive: [botocore] Documents the VideoDescription.ScalingBehavior.SMART(underscore)CROP enum value.
• api-change:mgn: [botocore] Network Migration APIs are now publicly available for direct programmatic access. Customers can now call Network Migration APIs directly without going through AWS Transform (ATX), enabling automation, integration with existing tools, and self-service migration workflows.
• api-change:quicksight: [botocore] The change adds a new capability named ManageSharedFolders in Custom Permissions

v1.42.67

Compare Source

=======

• api-change:datasync: [botocore] DataSync's 3 location types, Hadoop Distributed File System (HDFS), FSx for Windows File Server (FSx Windows), and FSx for NetApp ONTAP (FSx ONTAP) now have credentials managed via Secrets Manager, which may be encrypted with service keys or be configured to use customer-managed keys or secret.
• api-change:ecr: [botocore] Add Chainguard to PTC upstreamRegistry enum
• api-change:s3: [botocore] Adds support for account regional namespaces for general purpose buckets. The account regional namespace is a reserved subdivision of the global bucket namespace where only your account can create general purpose buckets.
• enhancement:sso-oidc: [botocore] Fixed missing error messages in SSO OIDC error responses by mapping OAuth2 error_description field to the standard Message field. Issue was raised in #&#8203;2216 <https://github.com/boto/botocore/issues/2216>__.

v1.42.66

Compare Source

=======

• api-change:customer-profiles: [botocore] Today, Amazon Connect is announcing the ability to filter (include or exclude) recommendations based on properties of items and interactions.
• api-change:eks: [botocore] Adds support for a new tier in controlPlaneScalingConfig on EKS Clusters.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:polly: [botocore] Added support for the new voices - Ambre (fr-FR), Beatrice (it-IT), Florian (fr-FR), Lennart (de-DE), Lorenzo (it-IT) and Tiffany (en-US). They are available as a Generative voices only.
• api-change:sagemaker: [botocore] SageMaker training plans allow you to extend your existing training plans to avoid workload interruptions without workload reconfiguration. When a training plan is approaching expiration, you can extend it directly through the SageMaker AI console or programmatically using the API or AWS CLI.
• api-change:simpledbv2: [botocore] Introduced Amazon SimpleDB export functionality enabling domain data export to S3 in JSON format. Added three new APIs StartDomainExport, GetExport, and ListExports via SimpleDBv2 service. Supports cross-region exports and KMS encryption.
• api-change:workspaces: [botocore] Added WINDOWS SERVER 2025 OperatingSystemName.

v1.42.65

Compare Source

=======

• api-change:bedrock-agentcore-control: [botocore] Adding first class support for AG-UI protocol in AgentCore Runtime.
• api-change:connectcases: [botocore] Added functionality for the Required and Hidden case rule types to be conditionally evaluated on up to 5 conditions.
• api-change:dms: [botocore] Not need to include to any release notes. The only change is to correct LoadTimeout unit from milliseconds to seconds in RedshiftSettings
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:kafka: [botocore] Add dual stack endpoint to SDK
• api-change:lexv2-models: [botocore] This release introduces a new generative AI feature called Lex Bot Analyzer. This feature leverage AI to analyze the bot configuration against AWS Lex best practices to identify configuration issues and provides recommendations.

astral-sh/ruff (ruff)

v0.15.6

Compare Source

Released on 2026-03-12.

Preview features

• Add support for lazy import parsing (#​23755)
• Add support for star-unpacking of comprehensions (PEP 798) (#​23788)
• Reject semantic syntax errors for lazy imports (#​23757)
• Drop a few rules from the preview default set (#​23879)
• [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#​23584)
• [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#​23631)
• [flake8-bugbear] Implement delattr-with-constant (B043) (#​23737)
• [flake8-tidy-imports] Add TID254 to enforce lazy imports (#​23777)
• [flake8-tidy-imports] Allow users to ban lazy imports with TID254 (#​23847)
• [isort] Retain lazy keyword when sorting imports (#​23762)
• [pyupgrade] Add from __future__ import annotations automatically (UP006) (#​23260)
• [refurb] Support newline parameter in FURB101 for Python 3.13+ (#​23754)
• [ruff] Add os-path-commonprefix (RUF071) (#​23814)
• [ruff] Add unsafe fix for os-path-commonprefix (RUF071) (#​23852)
• [ruff] Limit RUF036 to typing contexts; make it unsafe for non-typing-only (#​23765)
• [ruff] Use starred unpacking for RUF017 in Python 3.15+ (#​23789)

Bug fixes

• Fix --add-noqa creating unwanted leading whitespace (#​23773)
• Fix --add-noqa breaking shebangs (#​23577)
• [formatter] Fix lambda body formatting for multiline calls and subscripts (#​23866)
• [formatter] Preserve required annotation parentheses in annotated assignments (#​23865)
• [formatter] Preserve type-expression parentheses in the formatter (#​23867)
• [flake8-annotations] Fix stack overflow in ANN401 on quoted annotations with escape sequences (#​23912)
• [pep8-naming] Check naming conventions in match pattern bindings (N806, N815, N816) (#​23899)
• [perflint] Fix comment duplication in fixes (PERF401, PERF403) (#​23729)
• [pyupgrade] Properly trigger super change in nested class (UP008) (#​22677)
• [ruff] Avoid syntax errors in RUF036 fixes (#​23764)

Rule changes

• [flake8-bandit] Flag S501 with requests.request (#​23873)
• [flake8-executable] Fix WSL detection in non-Docker containers (#​22879)
• [flake8-print] Ignore pprint calls with stream= (#​23787)

Documentation

• Update docs for Markdown code block formatting (#​23871)
• [flake8-bugbear] Fix misleading description for B904 (#​23731)

Contributors

• @​zsol
• @​carljm
• @​ntBre
• @​Bortlesboat
• @​sososonia-cyber
• @​chirizxc
• @​leandrobbraga
• @​11happy
• @​Acelogic
• @​anishgirianish
• @​amyreese
• @​xvchris
• @​charliermarsh
• @​getehen
• @​Dev-iL

---

Configuration

📅 Schedule: Branch creation - Between 01:00 AM and 05:59 AM, only on Tuesday ( * 1-5 * * 2 ) in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 72.79%. Comparing base (e5f6b3f) to head (a6d8ae4).

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1332   +/-   ##
=======================================
  Coverage   72.79%   72.79%           
=======================================
  Files          16       16           
  Lines        4168     4168           
  Branches      616      616           
=======================================
  Hits         3034     3034           
  Misses        905      905           
  Partials      229      229           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.