Bump ruff from 0.0.275 to 0.0.291

[dependabot[bot]]

Bumps ruff from 0.0.275 to 0.0.291.

Release notes

Sourced from ruff's releases.

v0.0.291

What's Changed

Deprecations

The format command-line argument and configuration option has been renamed to output-format. While Ruff will continue to respect format when passed as a command-line argument or configuration option, this backwards-compatible support will be dropped in a future release. See: astral-sh/ruff#7514.

Rules

• [flake8-bandit] Implement S201: flask-debug-true by @​mkniewallner in astral-sh/ruff#7503
• [flake8-bandit] Implement S507: ssh_no_host_key_verification by @​mkniewallner in astral-sh/ruff#7528
• [flake8-logging] Implement LOG002: invalid-get-logger-argument by @​dhruvmanila in astral-sh/ruff#7399
• [flake8-logging] Implement LOG007: exception-without-exc-info by @​qdegraaf in astral-sh/ruff#7410
• [refurb] Implement FURB140: reimplemented-starmap by @​SavchenkoValeriy in astral-sh/ruff#7253
• [refurb] Implement FURB148: unnecessary-enumerate by @​tjkuson in astral-sh/ruff#7454
• [ruff] Detect asyncio.get_running_loop calls in RUF006 by @​charliermarsh in astral-sh/ruff#7562

Settings

• Show --no-X variants in CLI help by @​charliermarsh in astral-sh/ruff#7504
• Rename format option to output-format by @​MichaReiser in astral-sh/ruff#7514
• Enable tab completion for ruff rule by @​charliermarsh in astral-sh/ruff#7560

Bug Fixes

• Add padding to prevent some autofix errors by @​charliermarsh in astral-sh/ruff#7461
• Remove parentheses when rewriting assert calls to statements by @​charliermarsh in astral-sh/ruff#7464
• Avoid flagging starred elements in C402 by @​charliermarsh in astral-sh/ruff#7466
• Extend bad-dunder-method-name to permit attrs dunders by @​tjkuson in astral-sh/ruff#7472
• Avoid N802 violations for @​overload methods by @​JonathanPlasse in astral-sh/ruff#7498
• Avoid flagging starred expressions in UP007 by @​charliermarsh in astral-sh/ruff#7505
• Ensure that LOG007 only triggers on .exception() calls by @​charliermarsh in astral-sh/ruff#7524
• Use strict sorted and union for NoQA mapping insertion by @​dhruvmanila in astral-sh/ruff#7531
• Avoid inserting imports directly after continuation by @​charliermarsh in astral-sh/ruff#7553
• Add padding in PERF102 fixes by @​charliermarsh in astral-sh/ruff#7554
• Avoid invalid fix for parenthesized values in F601 by @​charliermarsh in astral-sh/ruff#7559
• Treat os.error as an OSError alias by @​charliermarsh in astral-sh/ruff#7582
• Extend bad-dunder-method-name to permit __html__ by @​jaap3 in astral-sh/ruff#7492
• Fix stylist indentation with a formfeed by @​konstin in astral-sh/ruff#7489

New Contributors

• @​MicaelJarniac made their first contribution in astral-sh/ruff#5498
• @​maheshsaripalli9 made their first contribution in astral-sh/ruff#7552
• @​T-256 made their first contribution in astral-sh/ruff#7585

Full Changelog: https://github.com/astral-sh/ruff/compare/v0.0.290...v0.0.291

v0.0.290

What's Changed

... (truncated)

Changelog

Sourced from ruff's changelog.

Breaking Changes

0.0.288

Remove support for emoji identifiers (#7212)

Previously, Ruff supported the non-standard compliant emoji identifiers e.g. 📦 = 1. We decided to remove this non-standard language extension, and Ruff now reports syntax errors for emoji identifiers in your code, the same as CPython.

Improved GitLab fingerprints (#7203)

GitLab uses fingerprints to identify new, existing, or fixed violations. Previously, Ruff included the violation's position in the fingerprint. Using the location has the downside that changing any code before the violation causes the fingerprint to change, resulting in GitLab reporting one fixed and one new violation even though it is a pre-existing violation.

Ruff now uses a more stable location-agnostic fingerprint to minimize that existing violations incorrectly get marked as fixed and re-reported as new violations.

Expect GitLab to report each pre-existing violation in your project as fixed and a new violation in your Ruff upgrade PR.

0.0.283 / 0.284

The target Python version now defaults to 3.8 instead of 3.10 (#6397)

Previously, when a target Python version was not specified, Ruff would use a default of Python 3.10. However, it is safer to default to an older Python version to avoid assuming the availability of new features. We now default to the oldest supported Python version which is currently Python 3.8.

(We still support Python 3.7 but since it has reached EOL we've decided not to make it the default here.)

Note this change was announced in 0.0.283 but not active until 0.0.284.

0.0.277

.ipynb_checkpoints, .pyenv, .pytest_cache, and .vscode are now excluded by default (#5513)

Ruff maintains a list of default exclusions, which now consists of the following patterns:

• .bzr
• .direnv
• .eggs
• .git
• .git-rewrite
• .hg
• .ipynb_checkpoints
• .mypy_cache
• .nox
• .pants.d
• .pyenv
• .pytest_cache
• .pytype
• .ruff_cache
• .svn
• .tox
• .venv

... (truncated)

Commits

• 8bfe9bd Bump version to v0.0.291 (#7606)
• 01843af Support option group documentation (#7593)
• 2ecf597 Refactor Options representation (#7591)
• f137819 Improve B005 documentation to reflect duplicate-character behavior (#7601)
• 9d16e46 Add most formatter options to ruff.toml / pyproject.toml (#7566)
• 82978ac Bump indicatif from 0.17.6 to 0.17.7 (#7592)
• 814403c Bump lint rules count to 700 (#7585)
• f254aaa Remove unwrap in os_error_alias.rs (#7583)
• a51b0b0 Treat os.error as an OSError alias (#7582)
• 74dbd87 Make ruff format idempotent when using stdin input (#7581)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)