Bump ruff from 0.8.1 to 0.8.5

[dependabot]

Bumps ruff from 0.8.1 to 0.8.5.

Release notes

Sourced from ruff's releases.

0.8.5

Release Notes

Preview features

• [airflow] Extend names moved from core to provider (AIR303) (#15145, #15159, #15196, #15216)
• [airflow] Extend rule to check class attributes, methods, arguments (AIR302) (#15054, #15083)
• [fastapi] Update FAST002 to check keyword-only arguments (#15119)
• [flake8-type-checking] Disable TC006 and TC007 in stub files (#15179)
• [pylint] Detect nested methods correctly (PLW1641) (#15032)
• [ruff] Detect more strict-integer expressions (RUF046) (#14833)
• [ruff] Implement falsy-dict-get-fallback (RUF056) (#15160)
• [ruff] Implement unnecessary-round (RUF057) (#14828)

Rule changes

• Visit PEP 764 inline TypedDict keys as non-type-expressions (#15073)
• [flake8-comprehensions] Skip C416 if comprehension contains unpacking (#14909)
• [flake8-pie] Allow cast(SomeType, ...) (PIE796) (#15141)
• [flake8-simplify] More precise inference for dictionaries (SIM300) (#15164)
• [flake8-use-pathlib] Catch redundant joins in PTH201 and avoid syntax errors (#15177)
• [pycodestyle] Preserve original value format (E731) (#15097)
• [pydocstyle] Split on first whitespace character (D403) (#15082)
• [pyupgrade] Add all PEP-585 names to UP006 rule (#5454)

Configuration

• [flake8-type-checking] Improve flexibility of runtime-evaluated-decorators (#15204)
• [pydocstyle] Add setting to ignore missing documentation for *args and **kwargs parameters (D417) (#15210)
• [ruff] Add an allowlist for unsafe-markup-use (RUF035) (#15076)

Bug fixes

• Fix type subscript on older python versions (#15090)
• Use TypeChecker for detecting fastapi routes (#15093)
• [pycodestyle] Avoid false positives and negatives related to type parameter default syntax (E225, E251) (#15214)

Documentation

• Fix incorrect doc in shebang-not-executable (EXE001) and add git+windows solution to executable bit (#15208)
• Rename rules currently not conforming to naming convention (#15102)

Contributors

• @​AlexWaygood
• @​Avasam
• @​Daverball
• @​InSyncWithFoo
• @​KotlinIsland
• @​Lee-W
• @​MichaReiser

... (truncated)

Changelog

Sourced from ruff's changelog.

0.8.5

Preview features

• [airflow] Extend names moved from core to provider (AIR303) (#15145, #15159, #15196, #15216)
• [airflow] Extend rule to check class attributes, methods, arguments (AIR302) (#15054, #15083)
• [fastapi] Update FAST002 to check keyword-only arguments (#15119)
• [flake8-type-checking] Disable TC006 and TC007 in stub files (#15179)
• [pylint] Detect nested methods correctly (PLW1641) (#15032)
• [ruff] Detect more strict-integer expressions (RUF046) (#14833)
• [ruff] Implement falsy-dict-get-fallback (RUF056) (#15160)
• [ruff] Implement unnecessary-round (RUF057) (#14828)

Rule changes

• Visit PEP 764 inline TypedDict keys as non-type-expressions (#15073)
• [flake8-comprehensions] Skip C416 if comprehension contains unpacking (#14909)
• [flake8-pie] Allow cast(SomeType, ...) (PIE796) (#15141)
• [flake8-simplify] More precise inference for dictionaries (SIM300) (#15164)
• [flake8-use-pathlib] Catch redundant joins in PTH201 and avoid syntax errors (#15177)
• [pycodestyle] Preserve original value format (E731) (#15097)
• [pydocstyle] Split on first whitespace character (D403) (#15082)
• [pyupgrade] Add all PEP-585 names to UP006 rule (#5454)

Configuration

• [flake8-type-checking] Improve flexibility of runtime-evaluated-decorators (#15204)
• [pydocstyle] Add setting to ignore missing documentation for *args and **kwargs parameters (D417) (#15210)
• [ruff] Add an allowlist for unsafe-markup-use (RUF035) (#15076)

Bug fixes

• Fix type subscript on older python versions (#15090)
• Use TypeChecker for detecting fastapi routes (#15093)
• [pycodestyle] Avoid false positives and negatives related to type parameter default syntax (E225, E251) (#15214)

Documentation

• Fix incorrect doc in shebang-not-executable (EXE001) and add git+windows solution to executable bit (#15208)
• Rename rules currently not conforming to naming convention (#15102)

0.8.4

Preview features

• [airflow] Extend AIR302 with additional functions and classes (#15015)
• [airflow] Implement moved-to-provider-in-3 for modules that has been moved to Airflow providers (AIR303) (#14764)
• [flake8-use-pathlib] Extend check for invalid path suffix to include the case "." (PTH210) (#14902)
• [perflint] Fix panic in PERF401 when list variable is after the for loop (#14971)
• [perflint] Simplify finding the loop target in PERF401 (#15025)

... (truncated)

Commits

• 11e873e Bump version to 0.8.5 (#15219)
• 89ea037 [ruff] Unnecessary rounding (RUF057) (#14828)
• f8c9665 [airflow] Extend names moved from core to provider (AIR303) (#15216)
• af95f6b [pycodestyle] Avoid false positives and negatives related to type parameter...
• 79682a2 Sync vendored typeshed stubs (#15213)
• 1ef0f61 [flake8-type-checking] Improve flexibility of `runtime-evaluated-decorators...
• 7ca3f95 Update references to astral-sh/ruff-action from v2 to v3 (#15212)
• 32de580 [airflow]: extend names moved from core to provider (AIR303) (#15196)
• cfd6093 [pydocstyle] Add setting to ignore missing documentation for*args and `**...
• 3c9021f [ruff] Implement falsy-dict-get-fallback (RUF056) (#15160)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dryrunsecurity]

DryRun Security Summary

The code change involves a minor version update of the ruff package in the requirements-lint.txt file, which is a routine dependency update that does not raise immediate security concerns.

Expand for full summary

Summary:

The provided code change is a minor version update for the ruff package in the requirements-lint.txt file, which is likely a file that specifies the dependencies and their versions for a linting tool or process. Version updates for linting tools are generally not a major security concern, as they are not directly involved in the application's core functionality or attack surface. However, it's still important to review the release notes for the new version to ensure that there are no known security vulnerabilities or issues that could impact the project. Additionally, it's a good practice to have a process in place to regularly review and update dependencies, including linting tools, to ensure that the project is using the latest stable and secure versions. This can help mitigate potential security risks introduced by outdated or vulnerable dependencies. Overall, this code change appears to be a routine update to a linting dependency and does not raise any immediate security concerns.

Files Changed:

• requirements-lint.txt: This file has been updated to include a version update for the ruff package, from 0.8.1 to 0.8.5. This is a minor version update, which typically includes bug fixes, improvements, and potentially new features, but does not introduce major changes or breaking changes.

Code Analysis

We ran 9 analyzers against 1 file and 0 analyzers had findings. 9 analyzers had no findings.

View PR in the DryRun Dashboard.

[dependabot]

Superseded by #11509.