build(deps-dev): bump the optional group across 1 directory with 3 updates

[dependabot]

Updates the requirements on pytest-github-actions-annotate-failures, django-allauth and gunicorn to permit the latest version.
Updates pytest-github-actions-annotate-failures to 0.4.0

Release notes

Sourced from pytest-github-actions-annotate-failures's releases.

v0.4.0

Breaking

• breaking: require python>=3.10 (#131) @​ssbarnea
• Require pytest 7+ (#116) @​edgarrmondragon

Features

• feat: Support Pytest 9+ subtests (#121) @​edgarrmondragon

Fixes

• fix: use setuptools-scm and release drafter (#128) @​ssbarnea
• fix(warnings): use GITHUB_WORKSPACE instead of GITHUB_WORKFLOW (#124) @​rmuir
• Fix internal error when processing warnings (#117) @​edgarrmondragon
• docs: examples should use newest actions (#109) @​vil02

Maintenance

• chore: release drafter part2 (#130) @​ssbarnea
• chore: enable release drafter (#129) @​ssbarnea
• ci: Test with Pytest 9 (#120) @​edgarrmondragon
• build(deps): bump actions/attest-build-provenance from 3 to 4 (#126) @dependabot[bot]
• build(deps): bump actions/download-artifact from 7 to 8 (#127) @dependabot[bot]
• build(deps): bump actions/download-artifact from 6 to 7 (#123) @dependabot[bot]
• build(deps): bump actions/checkout from 5 to 6 (#122) @dependabot[bot]
• build(deps): bump actions/download-artifact from 5 to 6 (#119) @dependabot[bot]
• build(deps): bump astral-sh/setup-uv from 6 to 7 (#118) @dependabot[bot]
• Test on Python 3.14 (#115) @​edgarrmondragon
• build(deps): bump actions/setup-python from 5 to 6 (#114) @dependabot[bot]
• build(deps): bump actions/attest-build-provenance from 2 to 3 (#112) @dependabot[bot]
• build(deps): bump actions/checkout from 4 to 5 (#111) @dependabot[bot]
• build(deps): bump actions/download-artifact from 4 to 5 (#110) @dependabot[bot]
• build(deps): bump astral-sh/setup-uv from 5 to 6 (#108) @dependabot[bot]

Commits

• f48349e fix: use setuptools-scm and release drafter (#128)
• f6004c8 feat!: require python>=3.10 (#131)
• 8991a45 chore: release drafter part2 (#130)
• 7b40174 chore: enable release drafter (#129)
• 58be6ad feat: Support Pytest 9+ subtests (#121)
• 26a0c80 Test with Pytest 9 (#120)
• d33d199 build(deps): bump actions/attest-build-provenance from 3 to 4 (#126)
• 4e6cbca build(deps): bump actions/download-artifact from 7 to 8 (#127)
• 3c82f58 fix(warnings): use GITHUB_WORKSPACE instead of GITHUB_WORKFLOW (#124)
• 67da723 build(deps): bump actions/download-artifact from 6 to 7 (#123)
• Additional commits viewable in compare view

Updates django-allauth to 65.15.0

Commits

• See full diff in compare view

Updates gunicorn to 25.2.0

Release notes

Sourced from gunicorn's releases.

Gunicorn 25.2.0

New Features

• Fast HTTP Parser (gunicorn_h1c 0.4.1): Integrate new exception types and limit parameters from gunicorn_h1c 0.4.1 for both WSGI and ASGI workers
  • Requires gunicorn_h1c >= 0.4.1 for http_parser='fast'
  • Falls back to Python parser in auto mode if version not met
  • Proper HTTP status codes for limit errors (414, 431)

Bug Fixes

• uWSGI Async Workers: Fix InvalidUWSGIHeader: incomplete header error when using gevent or gthread workers with uwsgi protocol behind nginx. (#3552, [PR #3554](benoitc/gunicorn#3554))

• FileWrapper Iterator Protocol: Add __iter__ and __next__ methods to FileWrapper for full PEP 3333 compliance. (#3396, [PR #3550](benoitc/gunicorn#3550))

Performance

• ASGI HTTP Parser Optimizations: Improve ASGI worker HTTP parsing performance
  • Callback-based parsing with direct bytearray buffer operations
  • Use bytearray.find() directly instead of converting to bytes first
  • Use index-based iteration for header parsing instead of list.pop(0) (O(1) vs O(n))

Commits

• dcaf2e1 Add 25.2.0 to 2026 changelog
• 6f601a0 Bump version to 25.2.0
• 22443a8 Bump tornado to 6.5.5 in lock file
• cb708b4 Add uwsgi async fix to changelog
• 385a921 Fix uwsgi incomplete header error with async workers (#3554)
• f555180 Add FileWrapper iterator fix to changelog
• f8fca7a fix: add iter and next to FileWrapper for PEP 3333 compliance (#3550)
• 0ad47db Use user-writable default path for control socket (#3551)
• 3667a10 Merge pull request #3549 from benoitc/feature/optional-http-parser
• 3568af1 Skip SIGINT shutdown test on PyPy
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions