From a71e6c4bc40115f6a6fcf12b7dbcb32677e39126 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Apr 2026 12:18:03 +0000
Subject: [PATCH 1/2] Bump identify from 2.6.18 to 2.6.19 (#12398)

Bumps [identify](https://github.com/pre-commit/identify) from 2.6.18 to
2.6.19.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pre-commit/identify/commit/b39f637a1b9032568e5b21b0474c3583acf1c530"><code>b39f637</code></a>
v2.6.19</li>
<li><a
href="https://github.com/pre-commit/identify/commit/c9768886c7fc78a2f8c7d0d9447064ff7a008eb9"><code>c976888</code></a>
Merge pull request <a
href="https://redirect.github.com/pre-commit/identify/issues/588">#588</a>
from hofbi/patch-1</li>
<li><a
href="https://github.com/pre-commit/identify/commit/6110d73a67ca4807b6331d21784a92313b9c082b"><code>6110d73</code></a>
Add support for 'tif' file extension</li>
<li><a
href="https://github.com/pre-commit/identify/commit/ccbd337ae1b4c0d03565cd6dd64076c0b4ff7929"><code>ccbd337</code></a>
Merge pull request <a
href="https://redirect.github.com/pre-commit/identify/issues/587">#587</a>
from pre-commit/pre-commit-ci-update-config</li>
<li><a
href="https://github.com/pre-commit/identify/commit/f5af2649530b5cbfdfcf6ac9d3e4f65e198747c2"><code>f5af264</code></a>
[pre-commit.ci] pre-commit autoupdate</li>
<li><a
href="https://github.com/pre-commit/identify/commit/a0be59827ac05537a9f8a4e1895133d44f2a4319"><code>a0be598</code></a>
Merge pull request <a
href="https://redirect.github.com/pre-commit/identify/issues/586">#586</a>
from pre-commit/pre-commit-ci-update-config</li>
<li><a
href="https://github.com/pre-commit/identify/commit/b1840430b285dab369b4b96480614cf429a6a50e"><code>b184043</code></a>
[pre-commit.ci] pre-commit autoupdate</li>
<li>See full diff in <a
href="https://github.com/pre-commit/identify/compare/v2.6.18...v2.6.19">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=identify&package-manager=pip&previous-version=2.6.18&new-version=2.6.19)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 942a62aec52..8bf0a0d24c9 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -85,7 +85,7 @@ frozenlist==1.8.0
     #   aiosignal
 gunicorn==25.3.0
     # via -r requirements/base.in
-identify==2.6.18
+identify==2.6.19
     # via pre-commit
 idna==3.11
     # via
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 6131351bde0..a1873249721 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -83,7 +83,7 @@ frozenlist==1.8.0
     #   aiosignal
 gunicorn==25.3.0
     # via -r requirements/base.in
-identify==2.6.18
+identify==2.6.19
     # via pre-commit
 idna==3.11
     # via
diff --git a/requirements/lint.txt b/requirements/lint.txt
index f6ded1ec048..359e7e8cff2 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -37,7 +37,7 @@ forbiddenfruit==0.1.4
     # via blockbuster
 freezegun==1.5.5
     # via -r requirements/lint.in
-identify==2.6.18
+identify==2.6.19
     # via pre-commit
 idna==3.11
     # via trustme

From 3bfd03abe13239c497a9f5037c367bdb7d27aace Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Apr 2026 12:30:11 +0000
Subject: [PATCH 2/2] Bump filelock from 3.28.0 to 3.29.0 (#12399)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [filelock](https://github.com/tox-dev/py-filelock) from 3.28.0 to
3.29.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/tox-dev/py-filelock/releases">filelock's
releases</a>.</em></p>
<blockquote>
<h2>3.29.0</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<ul>
<li>🐛 fix(async): use single-thread executor for lock consistency by <a
href="https://github.com/gaborbernat"><code>@​gaborbernat</code></a> in
<a
href="https://redirect.github.com/tox-dev/filelock/pull/533">tox-dev/filelock#533</a></li>
<li>✨ feat(soft): enable stale lock detection on Windows by <a
href="https://github.com/gaborbernat"><code>@​gaborbernat</code></a> in
<a
href="https://redirect.github.com/tox-dev/filelock/pull/534">tox-dev/filelock#534</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/tox-dev/filelock/compare/3.28.0...3.29.0">https://github.com/tox-dev/filelock/compare/3.28.0...3.29.0</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/tox-dev/filelock/blob/main/docs/changelog.rst">filelock's
changelog</a>.</em></p>
<blockquote>
<p>###########
Changelog
###########</p>
<hr />
<p>3.29.0 (2026-04-19)</p>
<hr />
<ul>
<li>✨ feat(soft): enable stale lock detection on Windows
:pr:<code>534</code></li>
<li>🐛 fix(async): use single-thread executor for lock consistency
:pr:<code>533</code></li>
<li>build(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1
:pr:<code>530</code> - by :user:<code>dependabot[bot]</code></li>
</ul>
<hr />
<p>3.28.0 (2026-04-14)</p>
<hr />
<ul>
<li>🐛 fix(ci): unbreak release workflow, publish to PyPI again
:pr:<code>529</code></li>
</ul>
<hr />
<p>3.26.1 (2026-04-09)</p>
<hr />
<ul>
<li>🐛 fix(asyncio): add <strong>exit</strong> to BaseAsyncFileLock and
fix <strong>del</strong> loop handling :pr:<code>518</code> - by
:user:<code>naarob</code></li>
<li>build(deps): bump pypa/gh-action-pypi-publish from 1.13.0 to 1.14.0
:pr:<code>525</code> - by :user:<code>dependabot[bot]</code></li>
</ul>
<hr />
<p>3.26.0 (2026-04-06)</p>
<hr />
<ul>
<li>✨ feat(soft): add PID inspection and lock breaking
:pr:<code>524</code></li>
<li>[pre-commit.ci] pre-commit autoupdate :pr:<code>523</code> - by
:user:<code>pre-commit-ci[bot]</code></li>
<li>build(deps): bump astral-sh/setup-uv from 7.6.0 to 8.0.0
:pr:<code>522</code> - by :user:<code>dependabot[bot]</code></li>
<li>Remove persist-credentials: false from release job
:pr:<code>520</code></li>
<li>[pre-commit.ci] pre-commit autoupdate :pr:<code>519</code> - by
:user:<code>pre-commit-ci[bot]</code></li>
<li>🔒 ci(workflows): add zizmor security auditing
:pr:<code>517</code></li>
<li>[pre-commit.ci] pre-commit autoupdate :pr:<code>516</code> - by
:user:<code>pre-commit-ci[bot]</code></li>
<li>[pre-commit.ci] pre-commit autoupdate :pr:<code>514</code> - by
:user:<code>pre-commit-ci[bot]</code></li>
</ul>
<hr />
<p>3.25.2 (2026-03-11)</p>
<hr />
<ul>
<li>🐛 fix(unix): suppress EIO on close in Docker bind mounts
:pr:<code>513</code></li>
</ul>
<hr />
<p>3.25.1 (2026-03-09)</p>
<hr />
<ul>
<li>[pre-commit.ci] pre-commit autoupdate :pr:<code>510</code> - by
:user:<code>pre-commit-ci[bot]</code></li>
<li>🐛 fix(win): restore best-effort lock file cleanup on release
:pr:<code>511</code></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/tox-dev/filelock/commit/469b47f192b0a9f8c8b795d9b9f57212c716959b"><code>469b47f</code></a>
Release 3.29.0</li>
<li><a
href="https://github.com/tox-dev/filelock/commit/e85d07281987e0855ba67c03dfdef342ec1097d5"><code>e85d072</code></a>
✨ feat(soft): enable stale lock detection on Windows (<a
href="https://redirect.github.com/tox-dev/py-filelock/issues/534">#534</a>)</li>
<li><a
href="https://github.com/tox-dev/filelock/commit/f5ee1712ced6916b2768812ee378183319339944"><code>f5ee171</code></a>
🐛 fix(async): use single-thread executor for lock consistency (<a
href="https://redirect.github.com/tox-dev/py-filelock/issues/533">#533</a>)</li>
<li><a
href="https://github.com/tox-dev/filelock/commit/2a954588cdf462a786835eeb102240ce79fecc8b"><code>2a95458</code></a>
build(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 (<a
href="https://redirect.github.com/tox-dev/py-filelock/issues/530">#530</a>)</li>
<li>See full diff in <a
href="https://github.com/tox-dev/py-filelock/compare/3.28.0...3.29.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=filelock&package-manager=pip&previous-version=3.28.0&new-version=3.29.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 8bf0a0d24c9..b4f47443129 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -69,7 +69,7 @@ exceptiongroup==1.3.1
     # via pytest
 execnet==2.1.2
     # via pytest-xdist
-filelock==3.28.0
+filelock==3.29.0
     # via
     #   python-discovery
     #   virtualenv
diff --git a/requirements/dev.txt b/requirements/dev.txt
index a1873249721..b212220f15a 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -67,7 +67,7 @@ exceptiongroup==1.3.1
     # via pytest
 execnet==2.1.2
     # via pytest-xdist
-filelock==3.28.0
+filelock==3.29.0
     # via
     #   python-discovery
     #   virtualenv
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 359e7e8cff2..fcfd2f37fde 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -29,7 +29,7 @@ distlib==0.4.0
     # via virtualenv
 exceptiongroup==1.3.1
     # via pytest
-filelock==3.28.0
+filelock==3.29.0
     # via
     #   python-discovery
     #   virtualenv