Bump the poetry-minor-patch-updates group with 10 updates

[dependabot]

Bumps the poetry-minor-patch-updates group with 10 updates:

Package	From	To
pyyaml	6.0.2	6.0.3
azure-core	1.35.0	1.35.1
scikit-learn	1.7.1	1.7.2
azure-ai-ml	1.28.1	1.29.0
azure-identity	1.24.0	1.25.0
pytest-asyncio	1.1.0	1.2.0
pytest	8.4.1	8.4.2
ruff	0.12.11	0.13.2
mypy	1.17.1	1.18.2
pytest-mock	3.14.1	3.15.1

Updates pyyaml from 6.0.2 to 6.0.3

Release notes

Sourced from pyyaml's releases.

6.0.3

What's Changed

• Support for Python 3.14 and free-threading (experimental).

Full Changelog: yaml/pyyaml@6.0.2...6.0.3

Changelog

Sourced from pyyaml's changelog.

6.0.3 (2025-09-25)

• yaml/pyyaml#864 -- Support for Python 3.14 and free-threading (experimental)

Commits

• 49790e7 Release 6.0.3 (#889)
• See full diff in compare view

Updates azure-core from 1.35.0 to 1.35.1

Release notes

Sourced from azure-core's releases.

azure-core_1.35.1

1.35.1 (2025-09-11)

Bugs Fixed

• Fixed an issue where the retry_backoff_max parameter in RetryPolicy and AsyncRetryPolicy constructors was being ignored, causing retry operations to use default maximum backoff values instead of the user-specified limits. #42444

Other Changes

• BearerTokenCredentialPolicy and AsyncBearerTokenCredentialPolicy will now properly surface credential exceptions when handling claims challenges. Previously, exceptions from credential token requests were suppressed; now they are raised and chained with the original 401 HttpResponseError response for better debugging visibility. #42536

Commits

• e4fde9e [Core] Prepare release (#42966)
• df01859 [Core] Read stream challenge error response (#42920)
• 1a598ea [Core] Chain challenge responses with token exceptions (#42536)
• 9958caf NO_CI move tools/azure-sdk-tools under eng/tools and all references acr...
• 6af5eaf [Core] Fix ignored retry_backoff_max in RetryPolicies (#42444)
• 61bb88f Add logging section to azure-core README.md (#42391)
• 4e688ad Put obvious fake values for cred linter (#42124)
• 0e64863 Increment package version after release of azure-core (#41887)
• 4e048f8 [Mgmt Core] Prepare release (#41883)
• See full diff in compare view

Updates scikit-learn from 1.7.1 to 1.7.2

Release notes

Sourced from scikit-learn's releases.

Scikit-learn 1.7.2

We're happy to announce the 1.7.2 release.

This release contains a few bug fixes and is the first version supporting Python 3.14.

You can see the changelog here: https://scikit-learn.org/stable/whats_new/v1.7.html#version-1-7-2

You can upgrade with pip as usual:

pip install -U scikit-learn

The conda-forge builds can be installed using:

conda install -c conda-forge scikit-learn

Thanks to everyone who contributed to this release !

Commits

• 25dee60 missing tag in changelog [cd build]
• 290b5af bump upper bounds [cd build]
• 813681d CI Add Python 3.14 nightly wheels (#32012)
• 9cc302d fix changelog
• 6596658 fix changelog
• da98b43 generate changelog 1.7.2
• f2ff9e8 set version 1.7.2
• 8b41b0f Fix uncomparable values in SimpleImputer tie-breaking strategy (#31820)
• 401f6c4 DOC: Fix formatting issues with bold font and backquote (#31950)
• 3d063ad DOC Clean up Building from source instructions on macOS (#31938)
• Additional commits viewable in compare view

Updates azure-ai-ml from 1.28.1 to 1.29.0

Release notes

Sourced from azure-ai-ml's releases.

azure-ai-ml_1.29.0

1.29.0 (2025-09-01)

Features Added

• Removed the dependencies - msrest and six

Bugs Fixed

• Fix for registry resource group passed to OnlineEndpointOperations when model is in registry in different resource group compared to workspace.
• Set defaults for min_instances, max_instances, idle_time_before_scale_down in AmlCompute

Other Changes

• v2 component types are now case insensitive

Commits

• adb4568 pin stevedor to 5.4.1 (#42691) (#42844)
• cb3dece update
• 7a790c8 macos git fetch runner fix (#42840)
• c90e3f6 update release date (#42801)
• 6cd8847 remove kwargs from docstrings (#42729) (#42732)
• ef3c233 Make component type insensitive (#42592)
• e13b371 update lock file (#42669)
• f4ca440 [AutoRelease] t2-security-2025-08-22-18832(can only be merged by SDK owner) (...
• 148b2e9 update dependency version (#42668)
• aa246cd [AutoRelease] t2-compute-2025-08-22-00365(can only be merged by SDK owner) (#...
• Additional commits viewable in compare view

Updates azure-identity from 1.24.0 to 1.25.0

Release notes

Sourced from azure-identity's releases.

azure-identity_1.25.0

1.25.0 (2025-09-11)

Features Added

• AzureDeveloperCliCredential now supports claims in get_token and get_token_info. (#42568)
• Added new keyword argument require_envvar to DefaultAzureCredential to enforce the presence of the AZURE_TOKEN_CREDENTIALS environment variable. (#42660)

Bugs Fixed

• Fixed an issue where AzureDeveloperCliCredential would time out during token requests when azd prompts for user interaction. This issue commonly occurred in environments where the AZD_DEBUG environment variable was set, causing the Azure Developer CLI to display additional prompts that interfered with automated token acquisition. (#42535)
• Fixed an issue where credentials configured with a default tenant ID of "organizations" (such as InteractiveBrowserCredential and DeviceCodeCredential) would fail authentication when a specific tenant ID was provided in get_token or get_token_info method calls. (#42721)

Other Changes

• Updated SharedTokenCacheCredential to raise CredentialUnavailableError instead of ClientAuthenticationError during token refresh failures when within the context of DefaultAzureCredential. (#42934)

Commits

• 0da8698 Make Prepare-Release.ps1 executable (#42976)
• 2352685 Increment package version after release of azure-core (#42979)
• 2dac85a updated CHANGELOG.md with the release information 4.14.0b4 (2025-09-11) (#42972)
• fcc40eb Mypy Dev Requirement Installation Fix (#42973)
• eb0ecce [Identity] Adjust cache credential error behavior in DAC (#42934)
• 95c0373 Add custom instructions to fetch TypeSpec docs (#42970)
• e150a42 Fix getting secret keys for connections of type "Custom Keys" (#42937)
• f6ac36d Session Token Manual Override Fix (#42965)
• e4fde9e [Core] Prepare release (#42966)
• 4b71cbe Ensure that azpysdk checks are dispatched with correct working directory (#42...
• Additional commits viewable in compare view

Updates pytest-asyncio from 1.1.0 to 1.2.0

Release notes

Sourced from pytest-asyncio's releases.

pytest-asyncio 1.2.0

1.2.0 - 2025-09-12

Added

• --asyncio-debug CLI option and asyncio_debug configuration option to enable asyncio debug mode for the default event loop. (#980)
• A pytest.UsageError for invalid configuration values of asyncio_default_fixture_loop_scope and asyncio_default_test_loop_scope. (#1189)
• Compatibility with the Pyright type checker (#731)

Fixed

• RuntimeError: There is no current event loop in thread 'MainThread' when any test unsets the event loop (such as when using asyncio.run and asyncio.Runner). (#1177)
• Deprecation warning when decorating an asynchronous fixture with @pytest.fixture in [strict]{.title-ref} mode. The warning message now refers to the correct package. (#1198)

Notes for Downstream Packagers

• Bump the minimum required version of tox to v4.28. This change is only relevant if you use the tox.ini file provided by pytest-asyncio to run tests.
• Extend dependency on typing-extensions>=4.12 from Python<3.10 to Python<3.13.

pytest-asyncio 1.1.1

v1.1.1 - 2025-09-12

Notes for Downstream Packagers

- Addresses a build problem with setuptoos-scm >= 9 caused by invalid setuptools-scm configuration in pytest-asyncio. (#1192)

Commits

• 0d3988f ci: Create GitHub release before publishing to PyPI.
• 07c5a0b docs: Include orphaned news fragment in changelog.
• be24582 chore: Prepare release of v1.2.0.
• 7aeb296 docs: Streamline news fragments
• 7b8311c ci: Fixes a bug that prevented SSH signature from being stripped from release...
• 9d4c2bd docs: Add changelog entry for Pyright compatibility.
• 94f6106 test: Added tests which assert that the event loop is reinstated if unset by ...
• df61991 [pre-commit.ci] pre-commit autoupdate
• f1f7941 Build(deps): Bump pytest from 8.4.1 to 8.4.2
• c77d3d3 Build(deps): Bump twine from 6.1.0 to 6.2.0
• Additional commits viewable in compare view

Updates pytest from 8.4.1 to 8.4.2

Release notes

Sourced from pytest's releases.

8.4.2

pytest 8.4.2 (2025-09-03)

Bug fixes

• #13478: Fixed a crash when using console_output_style{.interpreted-text role="confval"} with times and a module is skipped.

• #13530: Fixed a crash when using pytest.approx{.interpreted-text role="func"} and decimal.Decimal{.interpreted-text role="class"} instances with the decimal.FloatOperation{.interpreted-text role="class"} trap set.

• #13549: No longer evaluate type annotations in Python 3.14 when inspecting function signatures.

  This prevents crashes during module collection when modules do not explicitly use from __future__ import annotations and import types for annotations within a if TYPE_CHECKING: block.

• #13559: Added missing [int]{.title-ref} and [float]{.title-ref} variants to the [Literal]{.title-ref} type annotation of the [type]{.title-ref} parameter in pytest.Parser.addini{.interpreted-text role="meth"}.

• #13563: pytest.approx{.interpreted-text role="func"} now only imports numpy if NumPy is already in sys.modules. This fixes unconditional import behavior introduced in [8.4.0]{.title-ref}.

Improved documentation

• #13577: Clarify that pytest_generate_tests is discovered in test modules/classes; other hooks must be in conftest.py or plugins.

Contributor-facing changes

• #13480: Self-testing: fixed a few test failures when run with -Wdefault or a similar override.
• #13547: Self-testing: corrected expected message for test_doctest_unexpected_exception in Python 3.14.
• #13684: Make pytest's own testsuite insensitive to the presence of the CI environment variable -- by ogrisel{.interpreted-text role="user"}.

Commits

• bfae422 Prepare release version 8.4.2
• 8990538 Fix passenv CI in tox ini and make tests insensitive to the presence of the C...
• ca676bf Merge pull request #13687 from pytest-dev/patchback/backports/8.4.x/e63f6e51c...
• 975a60a Merge pull request #13686 from pytest-dev/patchback/backports/8.4.x/12bde8af6...
• 7723ce8 Merge pull request #13683 from even-even/fix_Exeption_to_Exception_in_errorMe...
• b7f0568 Merge pull request #13685 from CoretexShadow/fix/docs-pytest-generate-tests
• 2c94c4a add missing colon (#13640) (#13641)
• c3d7684 Merge pull request #13606 from pytest-dev/patchback/backports/8.4.x/5f9938563...
• dc6e3be Merge pull request #13605 from The-Compiler/training-update-2025-07
• f87289c Fix crash with times output style and skipped module (#13573) (#13579)
• Additional commits viewable in compare view

Updates ruff from 0.12.11 to 0.13.2

Release notes

Sourced from ruff's releases.

0.13.2

Release Notes

Released on 2025-09-25.

Preview features

• [flake8-async] Implement blocking-path-method (ASYNC240) (#20264)
• [flake8-bugbear] Implement map-without-explicit-strict (B912) (#20429)
• [flake8-bultins] Detect class-scope builtin shadowing in decorators, default args, and attribute initializers (A003) (#20178)
• [ruff] Implement logging-eager-conversion (RUF065) (#19942)
• Include .pyw files by default when linting and formatting (#20458)

Bug fixes

• Deduplicate input paths (#20105)
• [flake8-comprehensions] Preserve trailing commas for single-element lists (C409) (#19571)
• [flake8-pyi] Avoid syntax error from conflict with PIE790 (PYI021) (#20010)
• [flake8-simplify] Correct fix for positive maxsplit without separator (SIM905) (#20056)
• [pyupgrade] Fix UP008 not to apply when __class__ is a local variable (#20497)
• [ruff] Fix B004 to skip invalid hasattr/getattr calls (#20486)
• [ruff] Replace -nan with nan when using the value to construct a Decimal (FURB164 ) (#20391)

Documentation

• Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
• Update import path to ruff-wasm-web (#20539)
• [flake8-bandit] Clarify the supported hashing functions (S324) (#20534)

Other changes

• [playground] Allow hover quick fixes to appear for overlapping diagnostics (#20527)
• [playground] Fix non‑BMP code point handling in quick fixes and markers (#20526)

Contributors

• @​BurntSushi
• @​mtshiba
• @​second-ed
• @​danparizher
• @​ShikChen
• @​PieterCK
• @​GDYendell
• @​RazerM
• @​TaKO8Ki
• @​amyreese
• @​ntbre
• @​MichaReiser

Install ruff 0.13.2

... (truncated)

Changelog

Sourced from ruff's changelog.

0.13.2

Released on 2025-09-25.

Preview features

• [flake8-async] Implement blocking-path-method (ASYNC240) (#20264)
• [flake8-bugbear] Implement map-without-explicit-strict (B912) (#20429)
• [flake8-bultins] Detect class-scope builtin shadowing in decorators, default args, and attribute initializers (A003) (#20178)
• [ruff] Implement logging-eager-conversion (RUF065) (#19942)
• Include .pyw files by default when linting and formatting (#20458)

Bug fixes

• Deduplicate input paths (#20105)
• [flake8-comprehensions] Preserve trailing commas for single-element lists (C409) (#19571)
• [flake8-pyi] Avoid syntax error from conflict with PIE790 (PYI021) (#20010)
• [flake8-simplify] Correct fix for positive maxsplit without separator (SIM905) (#20056)
• [pyupgrade] Fix UP008 not to apply when __class__ is a local variable (#20497)
• [ruff] Fix B004 to skip invalid hasattr/getattr calls (#20486)
• [ruff] Replace -nan with nan when using the value to construct a Decimal (FURB164 ) (#20391)

Documentation

• Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
• Update import path to ruff-wasm-web (#20539)
• [flake8-bandit] Clarify the supported hashing functions (S324) (#20534)

Other changes

• [playground] Allow hover quick fixes to appear for overlapping diagnostics (#20527)
• [playground] Fix non‑BMP code point handling in quick fixes and markers (#20526)

Contributors

• @​BurntSushi
• @​mtshiba
• @​second-ed
• @​danparizher
• @​ShikChen
• @​PieterCK
• @​GDYendell
• @​RazerM
• @​TaKO8Ki
• @​amyreese
• @​ntbre
• @​MichaReiser

0.13.1

... (truncated)

Commits

• b0bdf03 Bump 0.13.2 (#20576)
• 7331d39 Update rooster to 0.1.0 (#20575)
• 529e5fa [ty] Ecosystem analyzer: timing report (#20571)
• efbb80f [ty] Remove hack in protocol satisfiability check (#20568)
• 9f3cffc Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
• 21be94a [ty] Explicitly test assignability/subtyping between unions of nominal types ...
• b7d5dc9 [ty] Add tests for interactions of @classmethod, @staticmethod, and proto...
• e1bb74b [ty] Match variadic argument to variadic parameter (#20511)
• edeb458 [ty] fallback to resolve_real_module in file_to_module (#20461)
• bea92c8 [ty] More precise type inference for dictionary literals (#20523)
• Additional commits viewable in compare view

Updates mypy from 1.17.1 to 1.18.2

Changelog

Sourced from mypy's changelog.

Mypy 1.18.2

• Fix crash on recursive alias (Ivan Levkivskyi, PR 19845)
• Add additional guidance for stubtest errors when runtime is object.__init__ (Stephen Morton, PR 19733)
• Fix handling of None values in f-string expressions in mypyc (BobTheBuidler, PR 19846)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

• Ali Hamdan
• Anthony Sottile
• BobTheBuidler
• Brian Schubert
• Chainfire
• Charlie Denton
• Christoph Tyralla
• CoolCat467
• Daniel Hnyk
• Emily
• Emma Smith
• Ethan Sarp
• Ivan Levkivskyi
• Jahongir Qurbonov
• Jelle Zijlstra
• Joren Hammudoglu
• Jukka Lehtosalo
• Marc Mueller
• Omer Hadari
• Piotr Sawicki
• PrinceNaroliya
• Randolf Scholz
• Robsdedude
• Saul Shanabrook
• Shantanu
• Stanislav Terliakov
• Stephen Morton
• wyattscarpenter

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.17

We’ve just uploaded mypy 1.17 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

... (truncated)

Commits

• df05f05 remove +dev from version
• 01a7a12 Update changelog for 1.18.2 (#19873)
• ca5abf0 Typeshed cherry-pick: Make type of unitest.mock.Any a subclass of Any (#1...
• 9d794b5 [mypyc] fix: inappropriate Nones in f-strings (#19846)
• 2c0510c stubtest: additional guidance on errors when runtime is object.init (#19733)
• 2f3f03c Bump version to 1.18.2+dev for point release
• 7669841 Fix crash on recursive alias in indirection.py (#19845)
• 03fbaa9 bump version to 1.18.1 due to wheels failure
• b44a1fb removed +dev from version
• 7197a99 Removed Unreleased in the Changelog for Release 1.18 (#19827)
• Additional commits viewable in compare view

Updates pytest-mock from 3.14.1 to 3.15.1

Release notes

Sourced from pytest-mock's releases.

v3.15.1

2025-09-16

• #529: Fixed itertools._tee object has no attribute error -- now duplicate_iterators=True must be passed to mocker.spy to duplicate iterators.

v3.15.0

2025-09-04

• Python 3.8 (EOL) is no longer supported.
• #524: Added spy_return_iter to mocker.spy, which contains a duplicate of the return value of the spied method if it is an Iterator.

Changelog

Sourced from pytest-mock's changelog.

3.15.1

2025-09-16

• [#529](https://github.com/pytest-dev/pytest-mock/issues/529) <https://github.com/pytest-dev/pytest-mock/issues/529>_: Fixed itertools._tee object has no attribute error -- now duplicate_iterators=True must be passed to mocker.spy to duplicate iterators.

3.15.0

2025-09-04

• Python 3.8 (EOL) is no longer supported.
• [#524](https://github.com/pytest-dev/pytest-mock/issues/524) <https://github.com/pytest-dev/pytest-mock/pull/524>_: Added spy_return_iter to mocker.spy, which contains a duplicate of the return value of the spied method if it is an Iterator.

Commits

• e1b5c62 Release 3.15.1
• 184eb19 Set spy_return_iter only when explicitly requested (#537)
• 4fa0088 [pre-commit.ci] pre-commit autoupdate (#536)
• f5aff33 Fix test failure with pytest 8+ and verbose mode (#535)
• adc4187 Bump actions/setup-python from 5 to 6 in the github-actions group (#533)
• 95ad570 [pre-commit.ci] pre-commit autoupdate (#532)
• e696bf0 Fix standalone mock support (#531)
• 5b29b03 Fix gen-release-notes script
• 7d22ef4 Merge pull request #528 from pytest-dev/release-3.15.0
• 90b29f8 Update CHANGELOG for 3.15.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.