Skip to content

deps: bump the python-deps group across 1 directory with 3 updates#11

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/uv/python-deps-ab339f92f6
Open

deps: bump the python-deps group across 1 directory with 3 updates#11
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/uv/python-deps-ab339f92f6

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps the python-deps group with 3 updates in the / directory: huggingface-hub, tree-sitter-language-pack and ruff.

Updates huggingface-hub from 1.22.0 to 1.23.0

Release notes

Sourced from huggingface-hub's releases.

[v1.23.0] Space templates, CLI extension updates & smoother Xet downloads

🚀 Create Spaces from templates

You can now seed a new Space from one of the official Hub templates (JupyterLab, a Gradio chatbot, a Streamlit app, etc.) instead of starting from an empty repo. List what's available with the new list_space_templates() API or the hf spaces templates CLI command, then pass a template's repo_id (or its short name) to create_repo(..., space_template=...) or hf repos create --type space --template. The Space SDK is inferred from the template, and templates recommended as private (like JupyterLab) are created privately by default unless you explicitly choose a visibility.

# List available templates
$ hf spaces templates
NAME        REPO_ID                             SDK     PREFERRED_PRIVATE
----------- ----------------------------------- ------- -----------------
Streamlit   streamlit/streamlit-template-space  docker
JupyterLab  SpacesExamples/jupyterlab           docker  ✔
Create a Space from a template
$ hf repos create my-jupyterlab --type space --template jupyterlab
✓ Repo created
repo_id: Wauplin/my-jupyterlab
url: https://huggingface.co/spaces/Wauplin/my-jupyterlab

>>> from huggingface_hub import create_repo
>>> create_repo("my-jupyterlab", repo_type="space", space_template="jupyterlab")

🔌 Update installed CLI extensions

A new hf extensions update command brings your installed CLI extensions to their latest published version on GitHub. Pass a name to update a single extension, or run it with no argument to check every installed extension and update the ones that are behind. Updates are applied in place — Python extensions reuse their existing venv and binary extensions are overwritten — so a failed update no longer leaves the extension uninstalled, and extensions that are already up to date are simply skipped.

# Update a single extension (accepts <name>, hf-<name> or OWNER/hf-<name>)
hf extensions update hf-claude
Check every installed extension and update the outdated ones
hf extensions update

📶 Smoother Xet download progress with dual bars

Xet downloads now show two progress bars so you can tell a transfer is alive even on a slow connection. The transfer bar advances as bytes arrive over the network, while the reconstruction bar tracks real progress as buffered chunks are written to disk — previously the single bar could sit at 0% for a long time while data was actually arriving. The dual bars are wired into single-file downloads (hf_hub_download), snapshot_download (where parallel file downloads feed the repo-level transfer and reconstruction bars), the hf download CLI, and bucket downloads.

big.bin: downloading bytes:   |  52.4MB     1.2MB/s
big.bin: reconstructing file: |  52.4MB / 105MB     800kB/s
</tr></table> 

... (truncated)

Commits
  • 0c92853 Release: v1.23.0
  • 6bc5aa0 Release: v1.23.0.rc0
  • 0815693 [CLI] Generate hf-cli skill locally instead of downloading from bucket (#4199)
  • 923acb0 [Utils] Add get_cached_repo_tree utility (#4513)
  • 7625ea3 Expose snapshot_path on IncompleteSnapshotError (#4500)
  • c5a110d [CLI] Add --pipeline-tag, --gated, --apps filters to hf models ls (#4512)
  • b63ed5b [Utils] Treat backslashes as path separators in filter_repo_objects (#4506)
  • 6d40d9c docs: drop /new from Inference Endpoints web interface links (#4509)
  • ed48426 [CI] Fix expand property type tests (#4510)
  • 790120b Support creating a Space from a template (#4504)
  • Additional commits viewable in compare view

Updates tree-sitter-language-pack from 1.12.2 to 1.12.5

Release notes

Sourced from tree-sitter-language-pack's releases.

v1.12.5

Fixed

  • build: build.rs no longer forces spurious rebuilds when the crate is consumed from a registry (crates.io) rather than a git checkout. It skips cargo:rerun-if-changed for the query-overlays directory when it does not exist, skips rerun triggers for parser directories under OUT_DIR, and falls back to CARGO_MANIFEST_DIR when the overlay-directory search walks past the filesystem root. Fixes #159.

Maintenance

  • Bump to 1.12.5 and regenerate all bindings, docs, and e2e suites with alef 0.32.11.
  • Update crossbeam-epoch to 0.9.20 (RUSTSEC-2026-0204).

See CHANGELOG.md for details.

Release v1.12.4

What's Changed

New Contributors

Full Changelog: xberg-io/tree-sitter-language-pack@v0.17.10...v1.12.4

v1.12.3

Fixed

  • python: get_parser() now returns the installed tree_sitter.Parser instead of a vendored parser class. On Python 3.14 the vendored parser produced unusable trees (nodes exposed no type/children; parse(bytes) raised TypeError) with nothing failing at construction, so the breakage was silent. get_parser(name) now builds tree_sitter.Parser(get_language(name)), mirroring get_language() and working across Python versions. Fixes #157.

Changed

  • deps: upgrade dependencies to their latest versions across every language binding (Rust, Python, Node, Ruby, PHP, Go, Java, C#, Elixir, WASM, Dart, Swift, Zig, Kotlin-Android); refresh grammar revisions and GitHub Actions pins. On wasm32, getrandom moves to 0.4 with the wasm_js feature.
  • Regenerated all bindings with alef 0.30.10, which corrects the generated Python get_parser return annotation (previously an invalid _rust.Parser that broke import on Python < 3.14).
Changelog

Sourced from tree-sitter-language-pack's changelog.

[1.12.5] - 2026-07-07

Fixed

  • build: build.rs no longer forces spurious rebuilds when the crate is consumed from a registry (crates.io) rather than a git checkout. It skips cargo:rerun-if-changed for the query-overlays directory when it does not exist, skips rerun triggers for parser directories that live under OUT_DIR, and falls back to CARGO_MANIFEST_DIR when the overlay-directory search walks past the filesystem root. Previously these emitted rerun triggers on nonexistent or generated paths, so cargo rebuilt the crate on every invocation. Fixes #159.

[1.12.3] - 2026-07-02

Fixed

  • python: get_parser() now returns the installed tree_sitter.Parser instead of a vendored parser class. On Python 3.14 the vendored parser produced unusable trees — nodes exposed no type/children and parse(bytes) raised TypeError — while nothing failed at construction, so the breakage was silent. get_parser(name) now builds tree_sitter.Parser(get_language(name)), mirroring get_language() and working across Python versions. Fixes #157.

Changed

  • deps: upgrade dependencies to their latest versions across every language binding (Rust, Python, Node, Ruby, PHP, Go, Java, C#, Elixir, WASM, Dart, Swift, Zig, Kotlin-Android) and refresh grammar revisions and GitHub Actions pins. On wasm32, getrandom moves to 0.4 with the wasm_js feature.
  • Regenerated all bindings with alef 0.30.10, which corrects the generated Python get_parser return annotation (previously an invalid _rust.Parser that broke import on Python < 3.14).

Fixed

  • wasm: skip the tmux grammar on wasm32. Its generated parser.c is ~30MB — under TSLP_WASM_MAX_PARSER_BYTES (40MB) so the size gate doesn't catch it, but it still overruns the clang wasm backend during codegen. Added to DEFAULT_WASM_SKIP_GRAMMARS so the wasm build is clean; it degrades gracefully (absent from STATIC_LANGUAGES).
  • wasm: enable the getrandom js feature for wasm32-unknown-unknown. Build-dependencies (ureq) transitively depend on getrandom, which requires the js feature on that target; without it wasm32 builds failed with "the wasm*-unknown-unknown targets are not supported by default".
  • build: build.rs now reports failed_languages.txt write errors separately (via eprintln) and always surfaces the underlying grammar compilation error even when the write fails.

[1.12.0] - 2026-06-29

Added

  • prefetch: prefetch(&[&str]) downloads (if needed) and loads every requested grammar in one pass, so a subsequent parallel workload only parses. It probes real on-disk loadability rather than has_language, fixing a short-circuit where known-but-not-downloaded grammars were skipped.

... (truncated)

Commits
  • b6bb82f chore(swift): update Package.swift with checksum for v1.12.5
  • 96b3ded fix(ci): resolve alef 0.32.11 vs poly conflicts and build FFI staticlib for s...
  • bc97ced fix: restore docs/skills dropped by version:sync, complete alef 0.32.11 regen
  • 2944f5f chore(release): 1.12.5
  • b61676f chore: cleanup
  • 95dbd42 fix: avoid spurious rebuilds for registry crates (#159)
  • 24d5919 chore(release): 1.12.4
  • 61d8d0c fix(ci): correct Python sdist smoke test to pass bytes to Parser.parse
  • 8aaf6dc fix(ci): hard-kill runaway tree-sitter generate on timeout
  • cdd15e4 fix(ci): add swap to publish clone-vendors shards to prevent OOM
  • Additional commits viewable in compare view

Updates ruff from 0.15.20 to 0.15.21

Release notes

Sourced from ruff's releases.

0.15.21

Release Notes

Released on 2026-07-09.

Preview features

  • Add --add-ignore for adding ruff:ignore comments (#26346)
  • [flake8-comprehensions] Drop C409 tuple comprehension preview behavior (#25707)
  • Avoid whitespace normalization when formatting comments (#26455)
  • [pyupgrade] Lint and fix use of deprecated abc decorators (UP051) (#26417)

Bug fixes

  • Refine non-empty f-string detection (#26526)
  • Detect syntax errors in individual notebook cells (#26419)
  • [flake8-implicit-str-concat] Fix ISC003 autofix incorrectly stripping + from comments (#26554)

Rule changes

  • [flake8-executable] Mark EXE004 fix as unsafe (#26033)
  • [flake8-pyi] Mark PYI061 fixes as unsafe in Python files (#26533)
  • [pydocstyle] Skip overload-with-docstring in stub files (D418) (#26318)

Performance

  • Avoid per-token source index visitor calls (#26506)
  • Cache parenthesized expression boundaries in the formatter (#26344)
  • Improve performance of rendering edits in preview mode (#26565)
  • Inline fits_element in formatter (#26429)
  • Inline formatter printing hot paths (#26504)
  • Lazily create builtin bindings (#26510)
  • Skip empty trivia scans in the source indexer (#26507)
  • Use ICF for macOS release builds (#25780)

Formatter

  • Add --extend-exclude to ruff format (#26372)

Documentation

  • Add "How does Ruff's import sorting compare to isort?" link to README (#26530)
  • Fix Mozilla Firefox repository link in README (#26537)
  • [flake8-bandit] Fix misleading docstring for mako-templates (S702) (#26432)
  • [ruff] Fix non-triggering example for if-key-in-dict-del (RUF051) (#26433)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.21

Released on 2026-07-09.

Preview features

  • Add --add-ignore for adding ruff:ignore comments (#26346)
  • [flake8-comprehensions] Drop C409 tuple comprehension preview behavior (#25707)
  • Avoid whitespace normalization when formatting comments (#26455)
  • [pyupgrade] Lint and fix use of deprecated abc decorators (UP051) (#26417)

Bug fixes

  • Refine non-empty f-string detection (#26526)
  • Detect syntax errors in individual notebook cells (#26419)
  • [flake8-implicit-str-concat] Fix ISC003 autofix incorrectly stripping + from comments (#26554)

Rule changes

  • [flake8-executable] Mark EXE004 fix as unsafe (#26033)
  • [flake8-pyi] Mark PYI061 fixes as unsafe in Python files (#26533)
  • [pydocstyle] Skip overload-with-docstring in stub files (D418) (#26318)

Performance

  • Avoid per-token source index visitor calls (#26506)
  • Cache parenthesized expression boundaries in the formatter (#26344)
  • Improve performance of rendering edits in preview mode (#26565)
  • Inline fits_element in formatter (#26429)
  • Inline formatter printing hot paths (#26504)
  • Lazily create builtin bindings (#26510)
  • Skip empty trivia scans in the source indexer (#26507)
  • Use ICF for macOS release builds (#25780)

Formatter

  • Add --extend-exclude to ruff format (#26372)

Documentation

  • Add "How does Ruff's import sorting compare to isort?" link to README (#26530)
  • Fix Mozilla Firefox repository link in README (#26537)
  • [flake8-bandit] Fix misleading docstring for mako-templates (S702) (#26432)
  • [ruff] Fix non-triggering example for if-key-in-dict-del (RUF051) (#26433)

Contributors

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Jul 13, 2026
Bumps the python-deps group with 3 updates in the / directory: [huggingface-hub](https://github.com/huggingface/huggingface_hub), [tree-sitter-language-pack](https://github.com/xberg-io/tree-sitter-language-pack) and [ruff](https://github.com/astral-sh/ruff).


Updates `huggingface-hub` from 1.22.0 to 1.23.0
- [Release notes](https://github.com/huggingface/huggingface_hub/releases)
- [Commits](huggingface/huggingface_hub@v1.22.0...v1.23.0)

Updates `tree-sitter-language-pack` from 1.12.2 to 1.12.5
- [Release notes](https://github.com/xberg-io/tree-sitter-language-pack/releases)
- [Changelog](https://github.com/xberg-io/tree-sitter-language-pack/blob/main/CHANGELOG.md)
- [Commits](xberg-io/tree-sitter-language-pack@v1.12.2...v1.12.5)

Updates `ruff` from 0.15.20 to 0.15.21
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.20...0.15.21)

---
updated-dependencies:
- dependency-name: huggingface-hub
  dependency-version: 1.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-deps
- dependency-name: ruff
  dependency-version: 0.15.21
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python-deps
- dependency-name: tree-sitter-language-pack
  dependency-version: 1.12.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title deps: bump the python-deps group with 3 updates deps: bump the python-deps group across 1 directory with 3 updates Jul 16, 2026
@dependabot
dependabot Bot force-pushed the dependabot/uv/python-deps-ab339f92f6 branch from 0254267 to 751e324 Compare July 16, 2026 00:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants