fix(deps): update non-major python dependencies

[nbl-renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
fastmcp	>=3.2.0,<4 → >=3.2.4,<4
pre-commit	>=4.5.1 → >=4.6.0
pydantic (changelog)	>=2.12.5 → >=2.13.3
pydantic-settings (changelog)	>=2.13.1 → >=2.14.0
ruff (source, changelog)	>=0.15.8 → >=0.15.12

---

Release Notes

PrefectHQ/fastmcp (fastmcp)

v3.2.4: : Patch Me If You Can

Compare Source

A grab bag of fixes, hardening, and polish.

The headline behavior change: background tasks are now scoped to the authorization context rather than the MCP session, so a task kicked off by an authenticated user survives session churn and stays tied to who started it. This is a breaking change for anyone relying on the old session-scoped semantics.

Security got three meaningful upgrades. FileUpload now validates actual decoded base64 size instead of trusting the client-reported number, so an attacker can't claim "10 bytes" and deliver 10MB. The proxy client stops forwarding inbound HTTP headers to unrelated remote servers — previously a header meant for server A could leak to server B. And AuthKit now auto-binds token audience to the resource URL per RFC 8707, closing a token-reuse gap across MCP resources.

Schema handling had a rough-edges pass. json_schema_to_type no longer crashes on Python keywords, boolean schemas, empty enums, or name collisions, and we added a 232K-schema crash test from APIs.guru to keep it honest. Gemini 2.5 Flash compatibility is fixed by stripping title fields the model rejects. Parameter descriptions are now extracted from docstrings automatically, so your tool signatures document themselves.

Plus a Keycloak OAuth provider for enterprise auth, improvements to ctx.elicit() (new response_title/response_description, deprecation warning when called without response_type), and dozens of smaller fixes across transforms, retry middleware, resource templates, and client disconnect handling.

What's Changed

Breaking Changes ⚠️

• Scope tasks to authorization context, not session by @​chrisguidry in #​3800

Enhancements ✨

• Bump pydocket>=0.19.0, drop fakeredis pin by @​chrisguidry in #​3822
• Add real-world schema crash test (232K schemas from APIs.guru) by @​strawgate in #​3826
• Enable 7 zero-violation ruff rules by @​strawgate in #​3841
• Promote 7 ty rules from ignore to warn by @​strawgate in #​3852
• Replace ___ with hash-based backend tool routing and per-tool prefab resources by @​jlowin in #​3824
• Enable 4 ruff rules (DTZ, ERA, ISC, INP) and fix 9 violations by @​strawgate in #​3842
• Extract parameter descriptions from docstrings by @​jlowin in #​3872
• ci: speed up schema crash test (CSafeLoader + xdist-safe aggregation) by @​jlowin in #​3873
• test: bump OpenAPI init perf threshold to 200ms for Windows CI by @​jlowin in #​3879
• refactor: unify object-schema conversion through _object_schema_to_type by @​jlowin in #​3884
• Add Keycloak OAuth Provider for Enterprise Authentication and local dev by @​stephaneberle9 in #​1937
• Allow auth providers to override protected resource base URLs by @​aaazzam in #​3900
• Enable PERF and T20 ruff rules by @​strawgate in #​3845
• Add response_title and response_description to ctx.elicit() by @​jlowin in #​3912
• Deprecate ctx.elicit() without response_type by @​jlowin in #​3916

Security 🔒

• Validate actual base64 data size in FileUpload, not client-reported size by @​strawgate in #​3816
• Stop forwarding inbound HTTP headers to unrelated remote servers by @​jlowin in #​3837
• AuthKit: auto-bind token audience to resource URL (RFC 8707) by @​jlowin in #​3905

Fixes 🐞

• Version-check is_docket_available() to avoid transitive pydocket crash by @​jlowin in #​3807
• fix: materialize generators before result conversion, handle bytes gracefully by @​strawgate in #​3830
• Fix json_schema_to_type crashes on keywords, boolean schemas, empty enums, and name collisions by @​strawgate in #​3818
• fix: replace or with is not None checks for config/override merging by @​strawgate in #​3833
• fix: TransformedTool sync fn crash and schema mutation by @​strawgate in #​3823
• fix: cross-provider duplicate detection, error visibility, mask propagation by @​strawgate in #​3827
• fix: don't pass HTTP kwargs when transport is unspecified by @​strawgate in #​3838
• fix: strip title fields from tool schemas for Gemini 2.5 Flash compatibility by @​strawgate in #​3861
• fix: retry when LLM returns text instead of calling final_response by @​strawgate in #​3850
• Raise on unhandled content types in sampling handler dispatch chains by @​strawgate in #​3857
• Fix broken code examples in docs by @​strawgate in #​3869
• fix: GoogleGenaiSamplingHandler leaks thought parts and gives unhelpful errors on empty responses by @​strawgate in #​3849
• fix: cap consecutive final_response validation retries by @​strawgate in #​3851
• Fix test quality issues by @​strawgate in #​3854
• Fix MCP tool on docs welcome page by @​lkiesow in #​3874
• Fix CIMD clients getting required_scopes instead of valid_scopes by @​jlowin in #​3836
• Rename filesystem-provider example dir to avoid mcp/ collision by @​jlowin in #​3878
• fix: drop configurable dedupe from AggregateProvider, always warn by @​jlowin in #​3877
• fix: resolve list[dict] return type producing Root() instead of dicts by @​KeWang0622 in #​3880
• fix: strip titles from bare-metadata nodes (Gemini 2.5 Flash) by @​jlowin in #​3881
• Fix wildcard resource template params in mounted servers by @​jlowin in #​3899
• Harden forced client disconnect cleanup by @​vonbai in #​3885
• fix: elicitation scalar return, resource auto-serialization, Client.new() state, prompt errors by @​strawgate in #​3859
• fix: task.wait() hangs indefinitely when task enters input_required by @​mrishav in #​3798
• Fix RetryMiddleware not retrying tool errors by @​strawgate in #​3858
• Stop pydantic 2.13 from leaking _WrappedResult docstring into tool output schemas by @​jlowin in #​3918

Docs 📚

• Note generate-notes API in release workflow docs by @​jlowin in #​3806
• docs: require agents to respect DNM markers on PRs by @​jlowin in #​3871
• docs: add uv-managed dependencies and uvx examples to mcp-json configuration by @​vincent067 in #​3843
• docs: link fastmcp-keycloak-local companion project from Keycloak integration page by @​stephaneberle9 in #​3904
• Overhaul apps docs by @​jlowin in #​3915

Dependencies 📦

• chore(deps): bump extractions/setup-just from 3 to 4 by @​dependabot[bot] in #​3863
• chore(deps): bump astral-sh/setup-uv from 6 to 7 by @​dependabot[bot] in #​3865
• chore(deps): bump actions/checkout from 4 to 6 by @​dependabot[bot] in #​3864
• chore(deps-dev): bump pydantic-monty from 0.0.9 to 0.0.10 by @​dependabot[bot] in #​3809
• chore(deps): bump the uv group across 2 directories with 1 update by @​dependabot[bot] in #​3913

New Contributors

• @​lkiesow made their first contribution in #​3874
• @​KeWang0622 made their first contribution in #​3880
• @​vonbai made their first contribution in #​3885

Full Changelog: PrefectHQ/fastmcp@v3.2.3...v3.2.4

v3.2.3: : Redis or Not

Compare Source

fakeredis 2.35.0 shipped an undocumented rename (FakeConnection → FakeAsyncRedisConnection) that broke pydocket's memory:// backend, causing fastmcp[tasks] installs to fail at startup with an ImportError. This pins fakeredis<2.35.0 in the tasks extra as a stopgap until a fixed pydocket ships.

What's Changed

Fixes 🐞

• Pin fakeredis<2.35.0 in tasks extra by @​jlowin in #​3804

Docs 📚

• Document session state isolation across mount boundaries by @​jlowin in #​3801

Full Changelog: PrefectHQ/fastmcp@v3.2.2...v3.2.3

v3.2.2: : Audience Appreciation

Compare Source

The Azure audience fix in 3.2.1 overcorrected: it switched token validation from client_id to identifier_uri, which fixed custom Application ID URIs but broke the default case where Azure AD v2 tokens set aud to the bare client ID GUID. Both formats are now accepted.

What's Changed

Fixes 🐞

• fix: accept both client_id and identifier_uri as Azure audience by @​jlowin in #​3797

Dependencies 📦

• chore(deps): bump the uv group across 2 directories with 1 update by @​dependabot[bot] in #​3795

Full Changelog: PrefectHQ/fastmcp@v3.2.1...v3.2.2

v3.2.1: : Audience Participation

Compare Source

Most of the fixes in this patch are about auth providers getting audience validation wrong. Cognito token verification was checking the aud JWT claim, but Cognito access tokens don't include one; they use client_id instead. Azure was hardcoding the raw client ID as the expected audience, ignoring the identifier_uri parameter even though Entra v2.0 tokens use the Application ID URI as aud. Both now validate correctly without changing the provider API. Consent cookies also had an unbounded growth problem in high-DCR-client environments, eventually blowing past reverse proxy header limits; they're now capped as an LRU.

On the OpenAPI side, nullable: true fields from 3.0 specs were leaking into tool input schemas as-is instead of being converted to JSON Schema's type: ["string", "null"]. Server variable templates in base URLs (like https://{region}.api.example.com) were also being passed through raw instead of substituted with their defaults.

Smaller fixes: form submissions from Prefab UI now correctly handle unchecked boolean checkboxes, the client no longer crashes on error responses with empty or non-text content from third-party servers, and asyncio.iscoroutinefunction no longer emits deprecation warnings on Python 3.14.

What's Changed

Breaking Changes ⚠️

• fix(google): use sub (user ID) for client_id instead of aud (app ID) by @​shigechika in #​3722
• fix: remove CSP from tool metadata, keep on resource only by @​jlowin in #​3754

Enhancements ✨

• [codex] Add FastMCP docs telemetry by @​aaazzam in #​3727
• chore: split SDK navigation into standalone $ref file by @​jlowin in #​3773
• fix: bump ty to >=0.0.29 and suppress new false positives by @​jlowin in #​3790

Fixes 🐞

• fix: use explicit None checks for JWT exp validation by @​jlowin in #​3724
• Unify background task context forwarding, fix concurrent dependency bugs by @​chrisguidry in #​3710
• fix: add proxy timeouts and modernize networking in apps dev by @​mateeaaa in #​3741
• fix: ResponseLimitingMiddleware no longer breaks outputSchema tools by @​jlowin in #​3756
• fix: substitute server variable defaults when building base URL from OpenAPI spec by @​mrishav in #​3770
• fix: FastAPI TestClient compatibility and lifespan re-initialization by @​kvdhanush06 in #​3736
• fix: propagate upstream_claims in load_access_token by @​kvdhanush06 in #​3750
• Remove deprecated asyncio.iscoroutinefunction fallback by @​kaiisfree in #​3767
• fix: changeable allowed_client_redirect_uris on OAuthProxy by @​fengarix in #​3772
• fix: broken link in changelog by @​jlowin in #​3775
• fix(docs): correct FastMCP tool name in welcome docs by @​buyua9 in #​3781
• fix: cap consent cookie size to prevent header overflow by @​jlowin in #​3784
• Fix boolean property schemas in JSON Schema parsing by @​jlowin in #​3785
• Fix OpenAPI 3.0 nullable fields in tool input schemas by @​kvdhanush06 in #​3768
• fix: Cognito token verification checks client_id instead of aud by @​jlowin in #​3786
• fix: use identifier_uri as audience for Azure token validation by @​jlowin in #​3787
• Harden client tool result error handling by @​aimable100 in #​3778

Docs 📚

• Github integraiton documentation fix: use result.data otherwise CallToolResult not scriptable by @​c4jquick in #​3753
• chore: split v2 docs navigation into separate file by @​jlowin in #​3762
• docs: document forward_resource parameter on OAuthProxy by @​jlowin in #​3788

Examples & Contrib 💡

• fix: boolean false values dropped in form submissions by @​jlowin in #​3776

Dependencies 📦

• chore(deps): bump fastmcp from 3.1.1 to 3.2.0 in /examples/testing_demo in the uv group across 1 directory by @​dependabot[bot] in #​3728
• chore(deps): bump anthropic from 0.86.0 to 0.87.0 in the uv group across 1 directory by @​dependabot[bot] in #​3742

New Contributors

• @​c4jquick made their first contribution in #​3753
• @​mateeaaa made their first contribution in #​3741
• @​mrishav made their first contribution in #​3770
• @​kvdhanush06 made their first contribution in #​3736
• @​kaiisfree made their first contribution in #​3767
• @​fengarix made their first contribution in #​3772
• @​buyua9 made their first contribution in #​3781
• @​aimable100 made their first contribution in #​3778

Full Changelog: PrefectHQ/fastmcp@v3.2.0...v3.2.1

pre-commit/pre-commit (pre-commit)

v4.6.0

Compare Source

==================

Features

• pre-commit hook-impl: allow --hook-dir to be missing to enable easier
  usage with git 2.54+ git hooks.
  • #​3662 PR by @​asottile.

Fixes

• pre-commit hook-impl: --hook-type is required.
  • #​3661 PR by @​asottile.

pydantic/pydantic (pydantic)

v2.13.3

Compare Source

GitHub release

What's Changed

Fixes

• Handle AttributeError subclasses with from_attributes by @​Viicos in #​13096

v2.13.2

Compare Source

GitHub release

What's Changed

Fixes

• Fix ValidationInfo.field_name missing with model_validate_json() by @​Viicos in #​13084

v2.13.1

Compare Source

GitHub release

What's Changed

Fixes

• Fix ValidationInfo.data missing with model_validate_json() by @​davidhewitt in #​13079

v2.13.0

Compare Source

GitHub release

The highlights of the v2.13 release are available in the blog post.
Several minor changes (considered non-breaking changes according to our versioning policy)
are also included in this release. Make sure to look into them before upgrading.

This release contains the updated pydantic.v1 namespace, matching version 1.10.26 which includes support for Python 3.14.

What's Changed

See the beta releases for all changes sinces 2.12.

New Features

• Allow default factories of private attributes to take validated model data by @​Viicos in #​13013

Changes

• Warn when serializing fixed length tuples with too few items by @​arvindsaripalli in #​13016

Fixes

• Change type of Any when synthesizing _build_sources for BaseSettings.__init__() signature in the mypy plugin by @​Viicos in #​13049
• Fix model equality when using runtime extra configuration by @​Viicos in #​13062

Packaging

• Add zizmor for GitHub Actions workflow linting by @​Viicos in #​13039
• Update jiter to v0.14.0 to fix a segmentation fault on musl Linux by @​Viicos in #​13064

New Contributors

• @​arvindsaripalli made their first contribution in #​13016

pydantic/pydantic-settings (pydantic-settings)

v2.14.0

Compare Source

What's Changed

• Fix parsing env vars into Optional Strict types by @​hramezani in #​792
• Fix RecursionError with mutually recursive models in CLI by @​hramezani in #​794
• Fix env_file from model_config ignored in CliApp.run() (#​795) by @​hramezani in #​796
• Update dependencies by @​hramezani in #​798
• Add Dependabot configuration by @​hramezani in #​801
• Bump samuelcolvin/check-python-version from 4.1 to 5 by @​dependabot[bot] in #​802
• Bump actions/upload-artifact from 4 to 7 by @​dependabot[bot] in #​803
• Bump actions/checkout from 4 to 6 by @​dependabot[bot] in #​804
• Bump astral-sh/setup-uv from 5 to 7 by @​dependabot[bot] in #​805
• Bump actions/setup-python from 5 to 6 by @​dependabot[bot] in #​806
• Ignore chardet and group GitHub Actions in Dependabot by @​hramezani in #​808
• Bump actions/download-artifact from 4 to 8 in the github-actions group by @​dependabot[bot] in #​809
• Bump the python-packages group with 2 updates by @​dependabot[bot] in #​810
• Support reading .env files from FIFOs (e.g. 1Password Environments) by @​JacobHayes in #​776
• Fix AliasChoices ignored when changing provider priority by @​hramezani in #​813
• fix: resolve KeyError in run_subcommand for underscore field names by @​bradykieffer in #​799
• Bump the python-packages group with 3 updates by @​dependabot[bot] in #​814
• Fix Literal[numeric Enum] coercion for CLI and env vars by @​m9810223 in #​811
• Fix nested discriminated unions not discovered by env/CLI providers by @​hramezani in #​816
• Bump the python-packages group with 3 updates by @​dependabot[bot] in #​820
• CLI ensure env nested max split internally. by @​kschwab in #​821
• Bump the python-packages group with 4 updates by @​dependabot[bot] in #​824
• Migrate boto3-stubs to types-boto3 by @​hramezani in #​831
• Fix CLI not recognizing field name with validate_by_name and AliasChoices by @​hramezani in #​826
• Allow customisation of the dotevn setting source to filter variables by @​CaselIT in #​832
• Bump the python-packages group with 3 updates by @​dependabot[bot] in #​833
• Introduce yamlfmt by @​Viicos in #​836
• Bump boto3 from 1.42.82 to 1.42.83 in the python-packages group by @​dependabot[bot] in #​837
• Introduce zizmor by @​Viicos in #​838
• Fix CliPositionalArg[list[CustomType]] crash for custom types by @​hramezani in #​839
• Add note about Mypy plugin for BaseSettings.__init__() by @​Viicos in #​842
• Fix cli_ignore_unknown_args=True not working on subcommands by @​hramezani in #​844
• Bump the python-packages group with 4 updates by @​dependabot[bot] in #​847
• Fix CLI descriptions lost under python -OO by falling back to json_schema_extra by @​hramezani in #​843
• Prepare release 2.14.0 by @​hramezani in #​848

New Contributors

• @​dependabot[bot] made their first contribution in #​802
• @​JacobHayes made their first contribution in #​776
• @​bradykieffer made their first contribution in #​799
• @​CaselIT made their first contribution in #​832

Full Changelog: pydantic/pydantic-settings@v2.13.1...v2.14.0

astral-sh/ruff (ruff)

v0.15.12

Compare Source

Released on 2026-04-24.

Preview features

• Implement #ruff:file-ignore file-level suppressions (#​23599)
• Implement #ruff:ignore logical-line suppressions (#​23404)
• Revert preview changes to displayed diagnostic severity in LSP (#​24789)
• [airflow] Implement task-branch-as-short-circuit (AIR004) (#​23579)
• [flake8-bugbear] Fix break/continue handling in loop-iterator-mutation (B909) (#​24440)
• [pylint] Fix PLC2701 for type parameter scopes (#​24576)

Rule changes

• [pandas-vet] Suggest .array as well in PD011 (#​24805)

CLI

• Respect default Unix permissions for cache files (#​24794)

Documentation

• [pylint] Fix PLR0124 description not to claim self-comparison always returns the same value (#​24749)
• [pyupgrade] Expand docs on reusable TypeVars and scoping (UP046) (#​24153)
• Improve rules table accessibility (#​24711)

Contributors

• @​dylwil3
• @​AlexWaygood
• @​woodruffw
• @​avasis-ai
• @​Dev-iL
• @​denyszhak
• @​ShipItAndPray
• @​anishgirianish
• @​augustelalande
• @​amyreese
• @​majiayu000

v0.15.11

Compare Source

Released on 2026-04-16.

Preview features

• [ruff] Ignore RUF029 when function is decorated with asynccontextmanager (#​24642)
• [airflow] Implement airflow-xcom-pull-in-template-string (AIR201) (#​23583)
• [flake8-bandit] Fix S103 false positives and negatives in mask analysis (#​24424)

Bug fixes

• [flake8-async] Omit overridden methods for ASYNC109 (#​24648)

Documentation

• [flake8-async] Add override mention to ASYNC109 docs (#​24666)
• Update Neovim config examples to use vim.lsp.config (#​24577)

Contributors

• @​augustelalande
• @​anishgirianish
• @​benberryallwood
• @​charliermarsh
• @​Dev-iL

v0.15.10

Compare Source

Released on 2026-04-09.

Preview features

• [flake8-logging] Allow closures in except handlers (LOG004) (#​24464)
• [flake8-self] Make SLF diagnostics robust to non-self-named variables (#​24281)
• [flake8-simplify] Make the fix for collapsible-if safe in preview (SIM102) (#​24371)

Bug fixes

• Avoid emitting multi-line f-string elements before Python 3.12 (#​24377)
• Avoid syntax error from E502 fixes in f-strings and t-strings (#​24410)
• Strip form feeds from indent passed to dedent_to (#​24381)
• [pyupgrade] Fix panic caused by handling of octals (UP012) (#​24390)
• Reject multi-line f-string elements before Python 3.12 (#​24355)

Rule changes

• [ruff] Treat f-string interpolation as potential side effect (RUF019) (#​24426)

Server

• Add support for custom file extensions (#​24463)

Documentation

• Document adding fixes in CONTRIBUTING.md (#​24393)
• Fix JSON typo in settings example (#​24517)

Contributors

• @​charliermarsh
• @​dylwil3
• @​silverstein
• @​anishgirianish
• @​shizukushq
• @​zanieb
• @​AlexWaygood

v0.15.9

Compare Source

Released on 2026-04-02.

Preview features

• [pyflakes] Flag annotated variable redeclarations as F811 in preview mode (#​24244)
• [ruff] Allow dunder-named assignments in non-strict mode for RUF067 (#​24089)

Bug fixes

• [flake8-errmsg] Avoid shadowing existing msg in fix for EM101 (#​24363)
• [flake8-simplify] Ignore pre-initialization references in SIM113 (#​24235)
• [pycodestyle] Fix W391 fixes for consecutive empty notebook cells (#​24236)
• [pyupgrade] Fix UP008 nested class matching (#​24273)
• [pyupgrade] Ignore strings with string-only escapes (UP012) (#​16058)
• [ruff] RUF072: skip formfeeds on dedent (#​24308)
• [ruff] Avoid re-using symbol in RUF024 fix (#​24316)
• [ruff] Parenthesize expression in RUF050 fix (#​24234)
• Disallow starred expressions as values of starred expressions (#​24280)

Rule changes

• [flake8-simplify] Suppress SIM105 for except* before Python 3.12 (#​23869)
• [pyflakes] Extend F507 to flag %-format strings with zero placeholders (#​24215)
• [pyupgrade] UP018 should detect more unnecessarily wrapped literals (UP018) (#​24093)
• [pyupgrade] Fix UP008 callable scope handling to support lambdas (#​24274)
• [ruff] RUF010: Mark fix as unsafe when it deletes a comment (#​24270)

Formatter

• Add nested-string-quote-style formatting option (#​24312)

Documentation

• [flake8-bugbear] Clarify RUF071 fix safety for non-path string comparisons (#​24149)
• [flake8-type-checking] Clarify import cycle wording for TC001/TC002/TC003 (#​24322)

Other changes

• Avoid rendering fix lines with trailing whitespace after | (#​24343)

Contributors

• @​charliermarsh
• @​MichaReiser
• @​tranhoangtu-it
• @​dylwil3
• @​zsol
• @​renovate
• @​bitloi
• @​danparizher
• @​chinar-amrutkar
• @​second-ed
• @​getehen
• @​Redovo1
• @​matthewlloyd
• @​zanieb
• @​InSyncWithFoo
• @​RenzoMXD

---

Configuration

📅 Schedule: (in timezone UTC)

• Branch creation
  • "before 4am on Monday,Tuesday,Wednesday,Thursday,Friday"
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate.

[github-actions]

Vulnerability Scan: Passed

Image: netbox-mcp-server:scan

Source	Library	CVE	Severity	Installed	Fixed	Title
Python	Authlib	GHSA-jj8c-mmj3-mmgv	🟡 MEDIUM	1.6.9	1.6.11	Authlib: Cross-site request forging when using cache
Python	Pygments	CVE-2026-4539	⚪ LOW	2.19.2	2.20.0	pygments: Pygments: Denial of Service via inefficient regular expression process
Python	cryptography	CVE-2026-39892	🟡 MEDIUM	46.0.6	46.0.7	cryptography: Cryptography: Buffer overflow via non-contiguous buffer in API
Python	python-dotenv	CVE-2026-28684	🟡 MEDIUM	1.2.1	1.2.2	python-dotenv: python-dotenv: Arbitrary file overwrite via symbolic link followi
Python	python-multipart	CVE-2026-40347	🟡 MEDIUM	0.0.22	0.0.26	python-multipart: Python-Multipart: Denial of Service via crafted multipart/form

Commit: c4e05cf