Copier update: CI success check

.copier-answers.yml

@@ -1,11 +1,11 @@
 # Changes here will be overwritten by Copier
-_commit: v0.0.94
+_commit: v0.0.97
 _src_path: gh:LabAutomationAndScreening/copier-base-template.git
 description: Copier template for creating Python libraries and executables
 install_claude_cli: false
 python_ci_versions:
 - 3.12.7
-- 3.13.2
+- 3.13.9
 python_version: 3.12.7
 repo_name: copier-python-package-template
 repo_org_name: LabAutomationAndScreening

.devcontainer/Dockerfile

@@ -1,12 +1,13 @@
 # base image tags available at https://mcr.microsoft.com/v2/devcontainers/universal/tags/list
 # added the platform flag to override any local settings since this image is only compatible with linux/amd64. since this image is only x64 compatible, suppressing the hadolint rule
 # hadolint ignore=DL3029
-FROM --platform=linux/amd64 mcr.microsoft.com/devcontainers/universal:5.1.1-noble
+FROM --platform=linux/amd64 mcr.microsoft.com/devcontainers/universal:5.1.4-noble
 
 SHELL ["/bin/bash", "-o", "pipefail", "-c"]
 
 # temporary hack until yarn updates its GPG key
-RUN rm /etc/apt/sources.list.d/yarn.list || true
+RUN rm /etc/apt/sources.list.d/yarn.list || true && \
+    curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | gpg --dearmor | tee /etc/apt/keyrings/yarn-archive-keyring.gpg > /dev/null
 
 RUN apt-get update -y && apt-get install -y \
     "bash-completion=$(apt-cache madison bash-completion | awk '{print $3}' | grep '^1:2.11' | head -n 1)" --no-install-recommends \

.devcontainer/devcontainer.json

@@ -3,7 +3,7 @@
   "service": "devcontainer",
   "workspaceFolder": "/workspaces/${localWorkspaceFolderBasename}",
   "features": {
-    "ghcr.io/devcontainers/features/python:1.7.1": {
+    "ghcr.io/devcontainers/features/python:1.8.0": {
       // https://github.com/devcontainers/features/blob/main/src/python/devcontainer-feature.json
       "version": "3.12.7",
       "installTools": false,
@@ -16,24 +16,24 @@
       "extensions": [
         // basic tooling
         // "eamodio.gitlens@15.5.1",
-        "coderabbit.coderabbit-vscode@0.16.6",
+        "coderabbit.coderabbit-vscode@0.17.0",
         "ms-vscode.live-server@0.5.2025051301",
         "MS-vsliveshare.vsliveshare@1.0.5905",
         "github.copilot@1.388.0",
-        "github.copilot-chat@0.36.2026010502",
+        "github.copilot-chat@0.38.2026022001",
 
         // Python
-        "ms-python.python@2025.21.2026010501",
-        "ms-python.vscode-pylance@2025.10.100",
+        "ms-python.python@2026.2.2026021801",
+        "ms-python.vscode-pylance@2026.1.1",
         "ms-vscode-remote.remote-containers@0.414.0",
-        "charliermarsh.ruff@2025.32.0",
+        "charliermarsh.ruff@2026.36.0",
 
         // Misc file formats
         "bierner.markdown-mermaid@1.29.0",
         "samuelcolvin.jinjahtml@0.20.0",
         "tamasfe.even-better-toml@0.19.2",
         "emilast.LogFileHighlighter@3.3.3",
-        "esbenp.prettier-vscode@11.0.2"
+        "esbenp.prettier-vscode@12.3.0"
       ],
       "settings": {
         "editor.accessibilitySupport": "off", // turn off sounds
@@ -58,5 +58,5 @@
   "initializeCommand": "sh .devcontainer/initialize-command.sh",
   "onCreateCommand": "sh .devcontainer/on-create-command.sh",
   "postStartCommand": "sh .devcontainer/post-start-command.sh"
-  // Devcontainer context hash (do not manually edit this, it's managed by a pre-commit hook): 69bb472f # spellchecker:disable-line
+  // Devcontainer context hash (do not manually edit this, it's managed by a pre-commit hook): 91027588 # spellchecker:disable-line
 }

.devcontainer/install-ci-tooling.py

@@ -7,9 +7,9 @@
 import tempfile
 from pathlib import Path
 
-UV_VERSION = "0.9.26"
-PNPM_VERSION = "10.28.1"
-COPIER_VERSION = "==9.11.2"
+UV_VERSION = "0.10.4"
+PNPM_VERSION = "10.30.0"
+COPIER_VERSION = "==9.11.3"
 COPIER_TEMPLATE_EXTENSIONS_VERSION = "==0.3.3"
 PRE_COMMIT_VERSION = "4.5.1"
 GITHUB_WINDOWS_RUNNER_BIN_PATH = r"C:\Users\runneradmin\.local\bin"

.github/actions/update-devcontainer-hash/action.yml

@@ -24,7 +24,7 @@ runs:
       shell: bash
 
     - name: Checkout code
-      uses: actions/checkout@v6.0.1
+      uses: actions/checkout@v6.0.2
       with:
         persist-credentials: true
         fetch-depth: 1

.github/pull_request_template.md

@@ -1,21 +1,21 @@
- ## Link to Issue or Message thread
+## Link to Issue or Message thread
 
 
 
- ## Why is this change necessary?
+## Why is this change necessary?
 
 
 
- ## How does this change address the issue?
+## How does this change address the issue?
 
 
 
- ## What side effects does this change have?
+## What side effects does this change have?
 
 
 
- ## How is this change tested?
+## How is this change tested?
 
 
 
- ## Other
+## Other

.github/reusable_workflows/build-docker-image.yaml

@@ -66,7 +66,7 @@ jobs:
         shell: bash
 
       - name: Checkout code
-        uses: actions/checkout@v6.0.1
+        uses: actions/checkout@v6.0.2
         with:
           persist-credentials: false
 

.github/workflows/ci.yaml

@@ -40,7 +40,7 @@ jobs:
 
           - 3.12.7
 
-          - 3.13.2
+          - 3.13.9
 
         copier: [
           '--data-file tests/copier_data/data1.yaml',
@@ -56,7 +56,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v6.0.1
+        uses: actions/checkout@v6.0.2
         with:
           persist-credentials: false
 
@@ -151,9 +151,14 @@ jobs:
     if: always()
     steps:
       - name: fail if prior job failure
-        if: needs.lint-matrix.result != 'success'
         run: |
-          exit 1
+          success_pattern="^(skipped|success)$" # these are the possibilities: https://docs.github.com/en/actions/reference/workflows-and-actions/contexts#needs-context
+
+          if [[ ! "${{ needs.lint-matrix.result }}" =~ $success_pattern ]]; then
+            echo "❌ One or more jobs did not finish with skipped or success"
+            exit 1
+          fi
+          echo "✅ All jobs finished with skipped or success"
       - name: Mark updated dependabot hash commit as succeeded
         if: needs.get-values.outputs.dependabot-commit-created == 'true'
         env:

.github/workflows/get-values.yaml

@@ -35,7 +35,7 @@ jobs:
           JSON
 
       - name: Checkout code
-        uses: actions/checkout@v6.0.1
+        uses: actions/checkout@v6.0.2
         with:
           persist-credentials: false
 

.github/workflows/pre-commit.yaml

@@ -33,14 +33,14 @@ jobs:
     steps:
       - name: Checkout code during push
         if: ${{ github.event_name == 'push' }}
-        uses: actions/checkout@v6.0.1
+        uses: actions/checkout@v6.0.2
         with:
           ref: ${{ github.ref_name }} # explicitly get the head of the branch, which will include any new commits pushed if this is a dependabot branch
           persist-credentials: false
 
       - name: Checkout code not during push
         if: ${{ github.event_name != 'push' }}
-        uses: actions/checkout@v6.0.1
+        uses: actions/checkout@v6.0.2
         with:
           persist-credentials: false
 

.gitignore

@@ -73,8 +73,8 @@ dist
 
 # Logs
 *.log
+*.log.*
 **/logs/log*.txt
-**/logs/*.log.*
 
 # macOS dev cleanliness
 **/.DS_Store

.pre-commit-config.yaml

@@ -42,7 +42,7 @@ repos:
 
   # Reformatting (should generally come before any file format or other checks, because reformatting can change things)
   - repo: https://github.com/crate-ci/typos
-    rev: b31d3aa6e8e43e6a9cf7a1d137baf189dec0922b  # frozen: v1
+    rev: e1f6f6eaedd8587fa3c76ec20e7cbaa8f7132b2d  # frozen: v1
     hooks:
       - id: typos
         exclude: |
@@ -108,7 +108,7 @@ repos:
           )$
 
   - repo: https://github.com/rbubley/mirrors-prettier
-    rev: 14abee445aea04b39069c19b4bd54efff6775819  # frozen: v3.7.4
+    rev: c2bc67fe8f8f549cc489e00ba8b45aa18ee713b1  # frozen: v3.8.1
     hooks:
       - id: prettier
         # TODO: get template YAML and MD files more in line with prettier expectations so we can start using prettier on those too
@@ -195,7 +195,7 @@ repos:
       - id: check-case-conflict
 
   - repo: https://github.com/python-jsonschema/check-jsonschema
-    rev: b035497fb64e3f9faa91e833331688cc185891e6  # frozen: 0.36.0
+    rev: ec368acd16deee9c560c105ab6d27db4ee19a5ec  # frozen: 0.36.2
     hooks:
       - id: check-github-workflows
 
@@ -249,7 +249,7 @@ repos:
         description: Runs hadolint to lint Dockerfiles
 
   - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: 5ba58aca0bd5bc7c0e1c0fc45af2e88d6a2bde83  # frozen: v0.14.10
+    rev: 0839f92796ae388643a08a21640a029b322be5c2  # frozen: v0.15.2
     hooks:
       - id: ruff
         name: ruff-src

copier.yml

@@ -76,7 +76,7 @@ python_ci_versions:
     multiselect: true
     choices:
       - "3.12.7"
-      - "3.13.2"
+      - "3.13.9"
       - "3.14.0"
 
 
@@ -143,6 +143,16 @@ use_codecov:
     help: Upload code coverage results to CodeCov?
     default: no
 
+_tasks:
+  - command: |
+        if [ -f ruff.toml ]; then
+            echo "Updating ruff target-version from python_version..."
+            py_major_minor="$(printf '%s' '{{ python_version }}' | cut -d. -f1,2)"
+            py_tag="py$(printf '%s' "$py_major_minor" | tr -d '.')"
+            sed -i -E 's/^target-version = "py[0-9]+"/target-version = "'"$py_tag"'"/' ruff.toml
+        else
+            echo "ruff.toml not found; skipping Ruff target-version update."
+        fi
 
 # Additional Settings
 _min_copier_version: "9.4"

extensions/context.py

@@ -10,78 +10,79 @@ class ContextUpdater(ContextHook):
 
     @override
     def hook(self, context: dict[Any, Any]) -> dict[Any, Any]:
-        context["uv_version"] = "0.9.26"
-        context["pnpm_version"] = "10.28.1"
+        context["uv_version"] = "0.10.4"
+        context["pnpm_version"] = "10.30.0"
         context["pre_commit_version"] = "4.5.1"
         context["pyright_version"] = ">=1.1.408"
         context["pytest_version"] = ">=9.0.2"
         context["pytest_randomly_version"] = ">=4.0.1"
         context["pytest_cov_version"] = ">=7.0.0"
-        context["ty_version"] = ">=0.0.13"
-        context["copier_version"] = "==9.11.2"
+        context["ty_version"] = ">=0.0.17"
+        context["copier_version"] = "==9.11.3"
         context["copier_template_extensions_version"] = "==0.3.3"
         context["sphinx_version"] = "9.0.4"
-        context["pulumi_version"] = ">=3.214.1"
-        context["pulumi_aws_version"] = ">=7.15.0"
-        context["pulumi_aws_native_version"] = ">=1.47.0"
+        context["pulumi_version"] = ">=3.223.0"
+        context["pulumi_aws_version"] = ">=7.20.0"
+        context["pulumi_aws_native_version"] = ">=1.54.0"
         context["pulumi_command_version"] = ">=1.1.3"
-        context["pulumi_github_version"] = ">=6.10.0"
-        context["pulumi_okta_version"] = ">=6.2.0"
-        context["boto3_version"] = ">=1.42.11"
+        context["pulumi_github_version"] = ">=6.12.1"
+        context["pulumi_okta_version"] = ">=6.2.3"
+        context["boto3_version"] = ">=1.42.53"
         context["ephemeral_pulumi_deploy_version"] = ">=0.0.6"
         context["pydantic_version"] = ">=2.12.5"
-        context["pyinstaller_version"] = ">=6.17.0"
+        context["pyinstaller_version"] = ">=6.19.0"
         context["setuptools_version"] = "80.7.1"
-        context["strawberry_graphql_version"] = ">=0.289.2"
-        context["fastapi_version"] = ">=0.128.0"
+        context["strawberry_graphql_version"] = ">=0.298.0"
+        context["fastapi_version"] = ">=0.129.0"
         context["fastapi_offline_version"] = ">=1.7.4"
-        context["uvicorn_version"] = ">=0.40.0"
+        context["uvicorn_version"] = ">=0.41.0"
         context["lab_auto_pulumi_version"] = ">=0.1.18"
         context["ariadne_codegen_version"] = ">=0.17.0"
         context["pytest_mock_version"] = ">=3.15.1"
         context["uuid_utils_version"] = ">=0.14.0"
-        context["syrupy_version"] = ">=5.0.0"
+        context["syrupy_version"] = ">=5.1.0"
         context["structlog_version"] = ">=25.5.0"
-        context["httpx_version"] = "0.28.1"
+        context["httpx_version"] = ">=0.28.1"
         context["python_kiota_bundle_version"] = ">=1.9.8"
         context["vcrpy_version"] = ">=8.1.1"
         context["pytest_recording_version"] = ">=0.13.4"
         context["pytest_asyncio_version"] = ">=1.3.0"
         context["pytest_reserial_version"] = ">=0.6.0"
+        context["python_faker_version"] = ">=40.4.0"
 
         context["default_node_version"] = "24.11.1"
-        context["nuxt_ui_version"] = "^4.3.0"
-        context["nuxt_version"] = "^4.2.2"
-        context["nuxt_icon_version"] = "^2.1.1"
+        context["nuxt_ui_version"] = "^4.4.0"
+        context["nuxt_version"] = "^4.3.1"
+        context["nuxt_icon_version"] = "^2.2.1"
         context["typescript_version"] = "^5.9.3"
-        context["playwright_version"] = "^1.57.0"
-        context["vue_version"] = "^3.5.26"
-        context["vue_tsc_version"] = "^3.2.1"
+        context["playwright_version"] = "^1.58.2"
+        context["vue_version"] = "^3.5.28"
+        context["vue_tsc_version"] = "^3.2.4"
         context["vue_devtools_api_version"] = "^8.0.0"
-        context["vue_router_version"] = "^4.6.4"
+        context["vue_router_version"] = "^5.0.3"
         context["dotenv_cli_version"] = "^11.0.0"
-        context["faker_version"] = "^10.2.0"
+        context["faker_version"] = "^10.3.0"
         context["vitest_version"] = "^3.2.4"
         context["eslint_version"] = "~9.38.0"
-        context["nuxt_eslint_version"] = "^1.12.1"
-        context["zod_version"] = "^4.3.5"
+        context["nuxt_eslint_version"] = "^1.15.1"
+        context["zod_version"] = "^4.3.6"
         context["zod_from_json_schema_version"] = "^0.5.1"
         context["nuxt_apollo_version"] = "5.0.0-alpha.15"
         context["graphql_codegen_cli_version"] = "^6.1.0"
         context["graphql_codegen_typescript_version"] = "^5.0.7"
         context["graphql_tools_mock_version"] = "^9.1.0"
-        context["tailwindcss_version"] = "^4.1.11"
+        context["tailwindcss_version"] = "^4.2.0"
         context["iconify_vue_version"] = "^5.0.0"
         context["iconify_json_lucide_version"] = "^1.2.71"
-        context["nuxt_fonts_version"] = "^0.12.1"
+        context["nuxt_fonts_version"] = "^0.14.0"
         context["nuxtjs_color_mode_version"] = "^3.5.2"
         context["vue_test_utils_version"] = "^2.4.6"
         context["nuxt_test_utils_version"] = "3.19.1"
-        context["vue_eslint_parser_version"] = "^10.1.3"
-        context["happy_dom_version"] = "^20.0.11"
+        context["vue_eslint_parser_version"] = "^10.4.0"
+        context["happy_dom_version"] = "^20.6.3"
         context["node_kiota_bundle_version"] = "1.0.0-preview.99"
 
-        context["gha_checkout"] = "v6.0.1"
+        context["gha_checkout"] = "v6.0.2"
         context["gha_setup_python"] = "v6.2.0"
         context["gha_cache"] = "v5.0.2"
         context["gha_upload_artifact"] = "v6.0.0"
@@ -108,10 +109,10 @@ def hook(self, context: dict[Any, Any]) -> dict[Any, Any]:
         context["alpine_image_version"] = "3.23"
         context["nginx_image_version"] = "1.29.4"
 
-        context["kiota_cli_version"] = "1.29.0"
+        context["kiota_cli_version"] = "1.30.0"
 
         context["py312_version"] = "3.12.7"
-        context["py313_version"] = "3.13.2"
+        context["py313_version"] = "3.13.9"
         context["py314_version"] = "3.14.0"
 
         # Kludge to be able to help symlinked jinja files in the child and grandchild templates