Bump the uv-minor-and-patch group with 2 updates#24
Conversation
Bumps the uv-minor-and-patch group with 2 updates: [mcp](https://github.com/modelcontextprotocol/python-sdk) and [ruff](https://github.com/astral-sh/ruff). Updates `mcp` from 1.28.0 to 1.28.1 - [Release notes](https://github.com/modelcontextprotocol/python-sdk/releases) - [Changelog](https://github.com/modelcontextprotocol/python-sdk/blob/main/RELEASE.md) - [Commits](modelcontextprotocol/python-sdk@v1.28.0...v1.28.1) Updates `ruff` from 0.15.18 to 0.15.20 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](astral-sh/ruff@0.15.18...0.15.20) --- updated-dependencies: - dependency-name: mcp dependency-version: 1.28.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: uv-minor-and-patch - dependency-name: ruff dependency-version: 0.15.20 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: uv-minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
Review pass — 2026-06-29Quick sanity check on the current state:
Worth a closer look before merging — flagging for your review. |
Vality
left a comment
There was a problem hiding this comment.
Routine Dependabot bump (mcp 1.28.0→1.28.1, ruff 0.15.18→0.15.20). CI green, lockfile only. LGTM.
Vality
left a comment
There was a problem hiding this comment.
Approved. Routine uv minor/patch group bump (2 updates), CI green.
|
Dependabot couldn't fetch all your path-based dependencies. Because of this, Dependabot cannot update this pull request. |
1 similar comment
|
Dependabot couldn't fetch all your path-based dependencies. Because of this, Dependabot cannot update this pull request. |
Bumps the uv-minor-and-patch group with 2 updates: mcp and ruff.
Updates
mcpfrom 1.28.0 to 1.28.1Commits
777b8d0[v1.x] Support TransportSecuritySettings in the WebSocket server transport (#...4720467[v1.x] Set Development Status classifier to Production/Stable (#2976)6df3d73[v1.x] Buffer per-request StreamableHTTP streams; store priming event before ...Updates
rufffrom 0.15.18 to 0.15.20Release notes
Sourced from ruff's releases.
... (truncated)
Changelog
Sourced from ruff's changelog.
... (truncated)
Commits
f82a36bBump 0.15.20 (#26376)af32943Improve the summarise-ecosystem-results skill (#26378)485ebabRemoveRUF076name from schema (#26371)ef81835[ty] Implement rust-analyzer's "Click for full compiler diagnostic" feature (...572b31e[ruff] Removepytest-fixture-autouse(RUF076) (#26240)f703f21Allow human-readable names in rule selectors (#25887)0d726b2[ty] Reuse equality semantics for membership compatibility (#25955)dbe6e98[ty] Infer definite equality comparison results (#26337)e700ea3[ty] Prove TypedDict structural patterns exhaustive (#26285)6a0d2ec[ty] Widen inferred class-valued instance attributes (#26338)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions