Bump build from 1.4.2 to 1.4.3

[dependabot]

Bumps build from 1.4.2 to 1.4.3.

Release notes

Sourced from build's releases.

1.4.3

What's Changed

• 🐛 fix(api): resolve thread-safety races in build API by @​gaborbernat in pypa/build#1015
• 🐛 fix(builder): validate backend-path entries exist on disk by @​gaborbernat in pypa/build#1016
• test: cover config settings build paths by @​terminalchai in pypa/build#992
• Add kind=(step, ) for root messages with * by @​abitrolly in pypa/build#973
• fix: correct changelog category ordering by @​gaborbernat in pypa/build#1017
• 🐛 fix(cli): show full dependency chain in missing deps error by @​gaborbernat in pypa/build#1019
• tests: fully annotate by @​henryiii in pypa/build#1020
• chore: lazy imports by @​henryiii in pypa/build#1021
• chore: adding more ruff codes by @​henryiii in pypa/build#1022
• tests: improve annotations by @​henryiii in pypa/build#1023
• 🧪 test(coverage): achieve 100% test coverage by @​gaborbernat in pypa/build#1018
• chore: add ruff PT by @​henryiii in pypa/build#1025
• chore: add ruff PYI by @​henryiii in pypa/build#1026
• chore: add ruff SIM/RET by @​henryiii in pypa/build#1028
• 🐛 fix(env): strip PYTHONPATH from isolated builds by @​gaborbernat in pypa/build#1024
• chore: use ruff ALL by @​henryiii in pypa/build#1029
• 🐛 fix(env): prevent pip credential hang with private indexes by @​gaborbernat in pypa/build#1030
• 🐛 fix(check_dependency): verify URL reqs via PEP 610 by @​gaborbernat in pypa/build#1027

New Contributors

• @​terminalchai made their first contribution in pypa/build#992

Full Changelog: pypa/build@1.4.2...1.4.3

Changelog

Sourced from build's changelog.

#################### 1.5.0 (2026-04-30) ####################

---

Features

---

• Drop Python 3.9 support - by :user:henryiii (:issue:1036)

---

Bugfixes

---

• Make --ignore-installed opt-in from the API via fresh=True - by :user:henryiii (:issue:1056)

---

Miscellaneous

---

• :issue:1033

#################### 1.4.4 (2026-04-22) ####################

---

Bugfixes

---

• Fix release pipeline generating CHANGELOG.rst entries with inconsistent heading levels, which broke sphinx -W and pinned Read the Docs stable at 1.4.0 - by :user:gaborbernat. (:issue:1031)
• Revert :pr:1039 from build 1.4.3, no longer check direct_url (for now) - by :user:henryiii (:issue:1039)
• Add --ignore-installed to pip install command to prevent issues with packages already present in the isolated build environment - by :user:henryiii (:issue:1037) (:issue:1040)
• Partial revert of :pr:973, keeping log messages in one entry, multiple lines. (:issue:1044)

---

Miscellaneous

---

• :issue:1048, :issue:1049

#################### 1.4.3 (2026-04-10) ####################

---

Features

---

... (truncated)

Commits

• 130b043 chore: prepare for 1.4.3
• 7642efe 🐛 fix(check_dependency): verify URL reqs via PEP 610 (#1027)
• d407530 🐛 fix(env): prevent pip credential hang with private indexes (#1030)
• b3dc114 chore: use ruff ALL (#1029)
• 27b67b2 🐛 fix(env): strip PYTHONPATH from isolated builds (#1024)
• c1454fd chore: add ruff SIM/RET (#1028)
• 0b1ca1c chore: add ruff PYI (#1026)
• f1dfe82 chore: add ruff PT (#1025)
• 4348292 🧪 test(coverage): achieve 100% test coverage (#1018)
• 5d3390b tests: improve annotations (#1023)
• Additional commits viewable in compare view

[senzingdevops]

Automated: approving this pull request because it includes a patch update

[github-actions]

🤖 Claude Code Review

PR Code Review

This is a minimal dependency bump PR — updating build from 1.4.2 to 1.4.3 in pyproject.toml.

---

Code Quality

• ✅ Style guide: Single-line change in pyproject.toml, no style concerns.
• ✅ No commented-out code: N/A
• ✅ Meaningful variable names: N/A
• ✅ DRY principle: N/A
• ✅ Defects: No logic errors; straightforward version pin bump. build 1.4.3 is a legitimate patch release. No concerns.
• ✅ CLAUDE.md: No issues with project memory configuration.

Testing

• ✅ Unit/integration tests: No application logic changed; no new tests required.
• ✅ Test coverage: N/A for a dependency bump.

Documentation

• ✅ README: No update needed.
• ✅ API docs: N/A
• ✅ Inline comments: N/A
• ⚠️ CHANGELOG.md: No changelog entry included. Dependency bumps are typically tracked — confirm whether this project's convention requires changelog updates for dev-dependency version bumps (automated Dependabot bumps often skip this, but manual bumps may warrant a note).
• ✅ Markdown formatting: N/A

Security

• ✅ No hardcoded credentials: N/A
• ✅ Input validation: N/A
• ✅ Error handling: N/A
• ✅ No sensitive data in logs: N/A
• ✅ No license files (.lic / AQAAAD): None present.

---

Summary: This is a clean, low-risk patch version bump for a dev dependency. The only minor question is whether a CHANGELOG entry is expected per project convention. No blockers.

Automated code review analyzing defects and coding standards

[senzingdevops]

Automated: approving this pull request because it includes a patch update

[github-actions]

🤖 Claude Code Review

PR Code Review

This is a minimal dependency bump — build from 1.4.2 to 1.4.3 in pyproject.toml.

Code Quality

• ✅ No style issues — single-line change to a version string
• ✅ No commented-out code
• ✅ No variable names to evaluate
• ✅ DRY not applicable
• ✅ No defects — straightforward version pin update

Testing

• ✅ No new functions or logic; no tests required for a dependency version bump

Documentation

• ❌ CHANGELOG.md — not updated. Dependency bumps are typically noted in changelogs. Check if this project maintains changelog entries for dev-dependency updates (some projects omit dev-only bumps; verify against project conventions).

Security

• ✅ No hardcoded credentials
• ✅ No input validation concerns
• ✅ No sensitive data
• ✅ No license files

---

Summary: This is a clean, low-risk dev-dependency bump. The only question is whether a CHANGELOG entry is expected — all other checklist items pass.

Automated code review analyzing defects and coding standards