Bump the pip group with 4 updates

[dependabot]

Bumps the pip group with 4 updates: cachetools, pyparsing, sentry-sdk and pytest.

Updates cachetools from 6.2.2 to 6.2.4

Changelog

Sourced from cachetools's changelog.

v6.2.4 (2025-12-15)

• Fix license information displayed on PyPI be using an updated version of twine for uploading.

v6.2.3 (2025-12-12)

• Improve documentation regarding @cachedmethod with condition parameter.

• Minor style and readability improvements.

• Modernize build environment.

• Update CI environment.

Commits

• 9983ef8 Bump version for uploading with updated twine.
• c935468 Release v6.2.3.
• 94d1099 Prepare v6.2.3.
• af8b7d4 Fix #372: Convert setup.cfg to pyproject.toml.
• 20b8a19 Fix #370: Mention that using @​cachedmethod with condition requires self to be...
• 116fb4c Minor style and readability improvements.
• 96546ea Bump actions/checkout from 5.0.0 to 6.0.0
• 0106cc1 Bump actions/setup-python from 6.0.0 to 6.1.0
• See full diff in compare view

Updates pyparsing from 3.2.5 to 3.3.1

Changelog

Sourced from pyparsing's changelog.

Version 3.3.1 - December, 2025

• Added license info to metadata, following PEP-639. Thanks to Gedalia Pasternak and Marc Mueller for submitted issue and PR. Fixes #626.

Version 3.3.0 - December, 2025

=========================================================================================== The version 3.3.0 release will begin emitting DeprecationWarnings for pyparsing methods that have been renamed to PEP8-compliant names (introduced in pyparsing 3.0.0, in August, 2021, with legacy names retained as aliases). In preparation, I added in pyparsing 3.2.2 a utility for finding and replacing the legacy method names with the new names. This utility is located at pyparsing/tools/cvt_pep8_names.py. This script will scan all Python files specified on the command line, and if the -u option is selected, will replace all occurrences of the old method names with the new PEP8-compliant names, updating the files in place.

Here is an example that converts all the files in the pyparsing /examples directory:

  python -m pyparsing.tools.cvt_pyparsing_pep8_names -u examples/*.py

The new names are compatible with pyparsing versions 3.0.0 and later.

• Deprecated indentedBlock, when converted using the cvt_pyparsing_pep8_names utility, will emit UserWarnings that additional code changes will be required. This is because the new IndentedBlock class no longer requires the calling code to supply an indent stack, while adding support for nested indentation levels and grouping.

• Deprecated locatedExpr, when converted using the cvt_pyparsing_pep8_names utility, will emit UserWarnings that additional code changes may be required. The new Located class removes the extra grouping level of the parsed values. (If the original locatedExpr parser was defined with a results name, then the extra grouping is retained, so that the results name nesting works properly; in this case, no code changes would be required.)

• Updated all examples and test cases to use PEP8 names (unless the test case is specifically designed to test behavior of a legacy method). Added railroad diagrams for some examples.

• Added exception handling when calling formatted_message(), so that str(exception) always returns at least something.

• All unit tests pass with Python 3.14, including 3.14t. This does not necessarily mean that pyparsing is now thread-safe, just that when run in the free-threaded interpreter, there were no errors. None of the unit tests try to do any parsing with multiple threads - they test the basic functionality of the library, under various versions of packrat and left-recursive parsing.

... (truncated)

Commits

• d73ce7a Update CHANGES file to reflect PR 627
• 1089724 Mark for 3.3.1 dev/release
• 421d20a Update license metadata to follow PEP 639
• e4895d3 Reduced recursive grammar in tiny_parser.py to avoid
• b6b0111 Blackening before releasing
• 7fbbcbd Revert transform_string perf penalty in _flatten (introduced in 3.2.0b2)
• 336647a Update perf scripts to run additional 3.2.x releases
• 6413afc Prep for 3.3.0 release
• 9223660 Added copyright line to LICENSE file
• 92d8368 Remove obsolete comment
• Additional commits viewable in compare view

Updates sentry-sdk from 2.46.0 to 2.48.0

Release notes

Sourced from sentry-sdk's releases.

2.48.0

Middleware spans are now disabled by default in Django, Starlette and FastAPI integrations. Set the middleware_spans integration-level option to capture individual spans per middleware layer. To record Django middleware spans, for example, configure as follows

  import sentry_sdk
  from sentry_sdk.integrations.django import DjangoIntegration
sentry_sdk.init(
dsn="<your-dsn>",
integrations=[
DjangoIntegration(middleware_spans=True),
],
)

New Features ✨

• feat(ai): add single message truncation by @​shellmayr in #5079

• feat(django): Add span around Task.enqueue by @​sentrivana in #5209

• feat(starlette): Set transaction name when middleware spans are disabled by @​alexander-alderman-webb in #5223

• feat: Add "K_REVISION" to environment variable release check (exposed by cloud run) by @​rpradal in #5222

Langgraph

• feat(langgraph): Response model attribute on invocation spans by @​alexander-alderman-webb in #5212
• feat(langgraph): Usage attributes on invocation spans by @​alexander-alderman-webb in #5211

OTLP

• feat(otlp): Optionally capture exceptions from otel's Span.record_exception api by @​sl0thentr0py in #5235
• feat(otlp): Implement new Propagator.inject for OTLPIntegration by @​sl0thentr0py in #5221

Bug Fixes 🐛

Integrations

• fix(django): Set active thread ID when middleware spans are disabled by @​alexander-alderman-webb in #5220

• fix(integrations): openai-agents fixing the input messages structure which was wrapped too much in some cases by @​constantinius in #5203

• fix(integrations): openai-agents fix multi-patching of get_model function by @​constantinius in #5195

• fix(integrations): add values for pydantic-ai and openai-agents to _INTEGRATION_DEACTIVATES to prohibit double span creation by @​constantinius in #5196

• fix(logs): Set span_id instead of sentry.trace.parent_span_id attribute by @​sentrivana in #5241

• fix(logs, metrics): Gate metrics, logs user attributes behind send_default_pii by @​sentrivana in #5240

• fix(pydantic-ai): Stop capturing internal exceptions by @​alexander-alderman-webb in #5237

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.48.0

Middleware spans are now disabled by default in Django, Starlette and FastAPI integrations. Set the middleware_spans integration-level option to capture individual spans per middleware layer. To record Django middleware spans, for example, configure as follows

  import sentry_sdk
  from sentry_sdk.integrations.django import DjangoIntegration
sentry_sdk.init(
dsn="<your-dsn>",
integrations=[
DjangoIntegration(middleware_spans=True),
],
)

New Features ✨

• feat(ai): add single message truncation by @​shellmayr in #5079

• feat(django): Add span around Task.enqueue by @​sentrivana in #5209

• feat(starlette): Set transaction name when middleware spans are disabled by @​alexander-alderman-webb in #5223

• feat: Add "K_REVISION" to environment variable release check (exposed by cloud run) by @​rpradal in #5222

Langgraph

• feat(langgraph): Response model attribute on invocation spans by @​alexander-alderman-webb in #5212
• feat(langgraph): Usage attributes on invocation spans by @​alexander-alderman-webb in #5211

OTLP

• feat(otlp): Optionally capture exceptions from otel's Span.record_exception api by @​sl0thentr0py in #5235
• feat(otlp): Implement new Propagator.inject for OTLPIntegration by @​sl0thentr0py in #5221

Bug Fixes 🐛

Integrations

• fix(django): Set active thread ID when middleware spans are disabled by @​alexander-alderman-webb in #5220

• fix(integrations): openai-agents fixing the input messages structure which was wrapped too much in some cases by @​constantinius in #5203

• fix(integrations): openai-agents fix multi-patching of get_model function by @​constantinius in #5195

• fix(integrations): add values for pydantic-ai and openai-agents to _INTEGRATION_DEACTIVATES to prohibit double span creation by @​constantinius in #5196

• fix(logs): Set span_id instead of sentry.trace.parent_span_id attribute by @​sentrivana in #5241

• fix(logs, metrics): Gate metrics, logs user attributes behind send_default_pii by @​sentrivana in #5240

... (truncated)

Commits

• 32e9cac Phrasing and code formatting in changelog
• bf30403 Call out new default for middleware spans and fix formatting in changelog
• 19e0d1f Fix changelog
• 6516b8b release: 2.48.0
• e275c9e Convert all remaining type annotations to PEP-526 format (#5239)
• a29b421 fix(logs): Set span_id instead of sentry.trace.parent_span_id attribute (...
• a9d89f2 fix(pydantic-ai): Stop capturing internal exceptions (#5237)
• 5606bb3 fix(logs, metrics): Gate metrics, logs user attributes behind `send_default_p...
• 6046f2d ci: Unpin Python version for LiteLLM tests (#5238)
• 42ed87a ci: 🤖 Update test matrix with new releases (12/15) (#5229)
• Additional commits viewable in compare view

Updates pytest from 9.0.1 to 9.0.2

Release notes

Sourced from pytest's releases.

9.0.2

pytest 9.0.2 (2025-12-06)

Bug fixes

• #13896: The terminal progress feature added in pytest 9.0.0 has been disabled by default, except on Windows, due to compatibility issues with some terminal emulators.

  You may enable it again by passing -p terminalprogress. We may enable it by default again once compatibility improves in the future.

  Additionally, when the environment variable TERM is dumb, the escape codes are no longer emitted, even if the plugin is enabled.

• #13904: Fixed the TOML type of the tmp_path_retention_count settings in the API reference from number to string.

• #13946: The private config.inicfg attribute was changed in a breaking manner in pytest 9.0.0. Due to its usage in the ecosystem, it is now restored to working order using a compatibility shim. It will be deprecated in pytest 9.1 and removed in pytest 10.

• #13965: Fixed quadratic-time behavior when handling unittest subtests in Python 3.10.

Improved documentation

• #4492: The API Reference now contains cross-reference-able documentation of pytest's command-line flags <command-line-flags>.

Commits

• 3d10b51 Prepare release version 9.0.2
• 188750b Merge pull request #14030 from pytest-dev/patchback/backports/9.0.x/1e4b01d1f...
• b7d7bef Merge pull request #14014 from bluetech/compat-note
• bd08e85 Merge pull request #14013 from pytest-dev/patchback/backports/9.0.x/922b60377...
• bc78386 Add CLI options reference documentation (#13930)
• 5a4e398 Fix docs typo (#14005) (#14008)
• d7ae6df Merge pull request #14006 from pytest-dev/maintenance/update-plugin-list-tmpl...
• 556f6a2 pre-commit: fix rst-lint after new release (#13999) (#14001)
• c60fbe6 Fix quadratic-time behavior when handling unittest subtests in Python 3.10 ...
• 73d9b01 Merge pull request #13995 from nicoddemus/patchback/backports/9.0.x/1b5200c0f...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 100.00%. Comparing base (4ee6e26) to head (d6ad28e).
⚠️ Report is 1 commits behind head on main.

@@            Coverage Diff            @@
##              main      #681   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           18        18           
  Lines         2149      2149           
  Branches        97        97           
=========================================
  Hits          2149      2149           

Flag	Coverage Δ
Python_3.10.19	100.00% <ø> (ø)
Python_3.11.14	100.00% <ø> (ø)
Python_3.12.12	100.00% <ø> (ø)
Python_3.13.11	100.00% <ø> (?)
Python_3.13.9	?
Python_3.14.0	?
Python_3.14.2	100.00% <ø> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.