Bump the all-deps group across 1 directory with 8 updates

[dependabot]

Bumps the all-deps group with 8 updates in the /requirements directory:

Package	From	To
sphinx	8.1.3	9.1.0
sphinx-rtd-theme	3.0.2	3.1.0
isort	7.0.0	8.0.1
django-filter	25.1	25.2
django-polymorphic	4.10.5	4.11.2
faker	40.1.2	40.12.0
pytest-cov	7.0.0	7.1.0
pytest-django	4.11.1	4.12.0

Updates sphinx from 8.1.3 to 9.1.0

Release notes

Sourced from sphinx's releases.

Sphinx 9.1.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Dependencies

• #14153: Drop Python 3.11 support.
• #12555: Drop Docutils 0.20 support. Patch by Adam Turner

Features added

• Add add_static_dir() for copying static assets from extensions to the build output. Patch by Jared Dillard

Bugs fixed

• #14189: autodoc: Fix duplicate :no-index-entry: for modules. Patch by Adam Turner
• #13713: Fix compatibility with MyST-Parser. Patch by Adam Turner
• Fix tests for Python 3.15. Patch by Adam Turner
• #14089: autodoc: Fix default option parsing. Patch by Adam Turner
• Remove incorrect static typing assertions. Patch by Adam Turner
• #14050: LaTeXTranslator fails to build documents using the "acronym" standard role. Patch by Günter Milde
• LaTeX: Fix rendering for grid filled merged vertical cell. Patch by Tim Nordell
• #14228: LaTeX: Fix overrun footer for cases of merged vertical table cells. Patch by Tim Nordell
• #14207: Fix creating HTMLThemeFactory objects in third-party extensions. Patch by Adam Turner
• #3099: LaTeX: PDF build crashes if a code-block contains more than circa 1350 codelines (about 27 a4-sized pages at default pointsize). Patch by Jean-François B.
• #14064: LaTeX: TABs ending up in sphinxVerbatim fail to obey tab stops. Patch by Jean-François B.
• #14089: autodoc: Improve support for non-weakreferencable objects. Patch by Adam Turner
• LaTeX: Fix accidental removal at 3.5.0 (#8854) of the documentation of literalblockcappos key of sphinxsetup. Patch by Jean-François B.

... (truncated)

Changelog

Sourced from sphinx's changelog.

Release 9.1.0 (released Dec 31, 2025)

Dependencies

• #14153: Drop Python 3.11 support.
• #12555: Drop Docutils 0.20 support. Patch by Adam Turner

Features added

• Add :meth:~sphinx.application.Sphinx.add_static_dir for copying static assets from extensions to the build output. Patch by Jared Dillard

Bugs fixed

• #14189: autodoc: Fix duplicate :no-index-entry: for modules. Patch by Adam Turner
• #13713: Fix compatibility with MyST-Parser. Patch by Adam Turner
• Fix tests for Python 3.15. Patch by Adam Turner
• #14089: autodoc: Fix default option parsing. Patch by Adam Turner
• Remove incorrect static typing assertions. Patch by Adam Turner
• #14050: LaTeXTranslator fails to build documents using the "acronym" standard role. Patch by Günter Milde
• LaTeX: Fix rendering for grid filled merged vertical cell. Patch by Tim Nordell
• #14228: LaTeX: Fix overrun footer for cases of merged vertical table cells. Patch by Tim Nordell
• #14207: Fix creating HTMLThemeFactory objects in third-party extensions. Patch by Adam Turner
• #3099: LaTeX: PDF build crashes if a code-block contains more than circa 1350 codelines (about 27 a4-sized pages at default pointsize). Patch by Jean-François B.
• #14064: LaTeX: TABs ending up in sphinxVerbatim fail to obey tab stops. Patch by Jean-François B.
• #14089: autodoc: Improve support for non-weakreferencable objects. Patch by Adam Turner
• LaTeX: Fix accidental removal at 3.5.0 (#8854) of the documentation of literalblockcappos key of :ref:'sphinxsetup' <latexsphinxsetup>. Patch by Jean-François B.

Commits

• cc7c6f4 Bump to 9.1.0 final
• b127b94 Add app.add_static_dir() for copying extension static files (#14219)
• 20f1c46 LaTeX: Inhibit breaks for rows with merged vertical cells (#14227)
• 3c85411 Polish CHANGES.rst (#14225)
• 9ee5446 LaTeX: restore 1.7 documentation of literalblockcappos (#14224)
• d75d602 LaTeX: improve (again...) some code comments in time for 9.1.0 (#14222)
• 8dca61d Improve some LaTeX code comments (#14220)
• 8ab9600 Bump to 9.1.0 candidate 2
• d59b237 autodoc: Improve support for non-weakreferencable objects
• 964424b Use the correct reference for using existing extensions (#14157)
• Additional commits viewable in compare view

Updates sphinx-rtd-theme from 3.0.2 to 3.1.0

Changelog

Sourced from sphinx-rtd-theme's changelog.

3.1.0

• Added support for docutils 0.22
• Added support for Sphinx 9.x

.. _release-3.1.0rc2:

3.1.0rc2

• Added support for docutils 0.22

.. _release-3.1.0rc1:

3.1.0rc1

• Added support for Sphinx 9.x

.. _release-3.0.2:

Commits

• 795de79 Release 3.1.0 (#1676)
• 66d0fdd Add Python 3.14 to the test suite (#1668)
• fbe5e60 3.1.0rc2 with support for docutils 0.22 (#1674)
• a76174c Add support for docutils 0.22 (#1671)
• 20733c3 Add support for Sphinx 9.0.0 (#1666)
• 71aacd3 Update Code of Conduct URL (#1664)
• 5a26375 Run tests and build docs with Sphinx 8.2 (#1640)
• 8d4d394 Sidebar should not be floating on mobile (#1622)
• See full diff in compare view

Updates isort from 7.0.0 to 8.0.1

Release notes

Sourced from isort's releases.

8.0.0

Changes

• Update CHANGELOG for version 8.0.0 (#2460) @​DanielNoord
• Fix edge case of __future__ import. (#2458) @​skv0zsneg
• Fix the Plone profile to be compatible with black (#2457) @​ale-rt
• typo fix (#2450) @​jsta
• Remove the setuptools plugin (#2427) @​DanielNoord
• Turn some warnings into errors in test suite (#2449) @​DanielNoord
• chore: replace black with ruff in clean.sh (#2448) @​joao-faria-dev
• feat!: remove old finders flag and legacy finder logic (#2446) @​joao-faria-dev
• Fix whitespace insensitive check triggering on tabs (#2437) @​robsdedude
• Fix line separator detection not considering form feed as white space (#2436) @​robsdedude
• Fix #1964: lines_before_import sometimes ignored (#1965) @​robsdedude
• Remove reference to 3.9 in README (#2434) @​DanielNoord

🚀 Features

• Ensure multiprocessing.Pool is always closed and joined (#2442) @​DanielNoord

👷 Continuous Integration

• Simplify CI by putting similar steps into a single action file (#2444) @​DanielNoord

📦 Dependencies

• Bump actions/checkout from 5 to 6 in the github-actions group (#2451) @dependabot[bot]
• Bump astral-sh/setup-uv from 6 to 7 in the github-actions group (#2441) @dependabot[bot]

Changelog

Sourced from isort's changelog.

Changelog

NOTE: isort follows the semver versioning standard. Find out more about isort's release policy here.

Releases

Unreleased

8.0.0 February 19 2026

• Removed --old-finders and --magic-placement flags and old_finders configuration option. The legacy finder logic that relied on environment introspection has been removed (#2445) @​joao-faria-dev
• Update the plone profile to not clash with black (#2456) @​ale-rt

6.1.0 October 1 2025

• Add python 3.14 classifier and badge (#2409) @​staticdev
• Drop use of non-standard pkg_resources API (#2405) @​dvarrazzo

6.0.1 Febuary 26 2025

• Add OSError handling in find_imports_in_file (#2331) @​kobarity

6.0.0 January 27 2025

• Remove support for Python 3.8 (#2327) @​DanielNoord
• Python 3.13 support (#2306) @​mayty
• Speed up exists_case_sensitive calls (#2264) @​correctmost
• Ensure that split_on_trailing_comma works with as imports (#2340) @​DanielNoord
• Black profile: enable magic comma (#2236) @​MrMino
• Update line_length and single_line_exclusions in google profile (#2149) @​jagapiou
• Allow --diff to be used with --jobs (#2302) @​mnakama
• Fix wemake profile to have correct character limit (#2241) @​sobolevn
• Fix sort_reexports code mangling (#2283) @​Helveg
• Fix correct group by package tokenization (#2136) @​glasnt

5.13.2 December 13 2023

• Apply the bracket fix from issue #471 only for use_parentheses=True (#2184) @​bp72
• Confine pre-commit to stages (#2213) @​davidculley
• Fixed colors extras (#2212) @​staticdev

5.13.1 December 11 2023

• Fixed integration tests (#2208) @​bp72
• Fixed normalizing imports from more than one level of parent modules (issue/2152) (#2191) @​bp72
• Remove optional dependencies without extras (#2207) @​staticdev

5.13.0 December 9 2023

... (truncated)

Commits

• a333737 Merge pull request #2463 from FinlayTheBerry/issue/2461
• 878ba7e Added compression to stdlibs for Python 3.14 in isort/stdlibs/py314.py
• b5f06a7 Merge pull request #2459 from Fridayai700/fix-unindented-comment-corruption
• 3459bde Merge pull request #2460 from PyCQA/DanielNoord-patch-1
• 6e70bb6 Update CHANGELOG for version 8.0.0
• fd2514b Fix unindented comments being corrupted in indented blocks
• b0f2dab Merge pull request #2458 from skv0zsneg/issue/1882
• 313797b Fix lint.
• 7d3a6f5 Add ignore for cyclomatic complexity check.
• 6b9f895 Remove debug prints.
• Additional commits viewable in compare view

Updates django-filter from 25.1 to 25.2

Changelog

Sourced from django-filter's changelog.

Version 25.2 (2025-10-05)

• Added testing for Django 6.0.

• Dropped support for Django <5.2 LTS

• Dropped support for Python 3.9.

Commits

• 17ec565 Bumped version for 25.2 release.
• 9b4b8fd Updated testing for Django 6.0. (#1730)
• 1b07b3e Bump actions/setup-python from 5 to 6 in the github-actions group (#1726)
• 27a1168 Bump the github-actions group with 2 updates (#1722)
• 7f59b6f Add drf as optional dependencies (#1724)
• 635343e Add reference anchors to filter types to facilitate intersphinx refs (#1706)
• 7b3176e Document steps for postgres full text search (#1704)
• See full diff in compare view

Updates django-polymorphic from 4.10.5 to 4.11.2

Release notes

Sourced from django-polymorphic's releases.

v4.11.2

What's Changed

• CI updates by @​bckohan in jazzband/django-polymorphic#869
• Bump github/codeql-action from 4.32.4 to 4.32.6 in the gha-updates group by @​dependabot[bot] in jazzband/django-polymorphic#870
• fix test path restriction by @​bckohan in jazzband/django-polymorphic#871
• reinclude lockfile - need it to avoid mysql builds by @​bckohan in jazzband/django-polymorphic#872
• Add Comprehensive Security Testing to CI Pipeline by @​JohananOppongAmoateng in jazzband/django-polymorphic#762
• remove unnecessary mark_safe, potentially vulnerable to xss by @​bckohan in jazzband/django-polymorphic#873
• update changelog by @​bckohan in jazzband/django-polymorphic#874
• switch default branch master -> main by @​bckohan in jazzband/django-polymorphic#875

Full Changelog: jazzband/django-polymorphic@v4.11.1...v4.11.2

v4.11.1

Fix for Release 4.11 causes UPDATE query to be routed to reader DB

What's Changed

• better release version parsing by @​bckohan in jazzband/django-polymorphic#861
• fix CI on oracle dj5.2 by @​bckohan in jazzband/django-polymorphic#862
• Bump cryptography from 46.0.4 to 46.0.5 by @​dependabot[bot] in jazzband/django-polymorphic#864
• Fix database routing bug on save() by @​bckohan in jazzband/django-polymorphic#866
• fix validate_version recipe by @​bckohan in jazzband/django-polymorphic#867

Full Changelog: jazzband/django-polymorphic@v4.11.0...v4.11.1

v4.11.0

Typing support has been added!

What's Changed

• feat: add comprehensive type annotations by @​huynguyengl99 in jazzband/django-polymorphic#856
• fix changelog version date by @​bckohan in jazzband/django-polymorphic#860

New Contributors

• @​huynguyengl99 made their first contribution in jazzband/django-polymorphic#856

Full Changelog: jazzband/django-polymorphic@v4.10.5...v4.11.0

Commits

• fa735f2 switch default branch master -> main
• fc10d06 update changelog
• 13b36cf add admin tests for coverage
• 81f7ccb add more admin tests for coverage
• 8ad3483 broaden bandit triggers
• 6c6114d remove unnecessary mark_safe, potentially vulnerable to xss
• 488e1bf Add bandit security scanning to CI
• 13521c6 reinclude lockfile - need it to avoid mysql builds
• c05a2df fix test path restriction
• d6adb62 Merge pull request #870 from jazzband/dependabot/github_actions/gha-updates-b...
• Additional commits viewable in compare view

Updates faker from 40.1.2 to 40.12.0

Release notes

Sourced from faker's releases.

Release v40.12.0

See CHANGELOG.md.

Release v40.11.1

See CHANGELOG.md.

Release v40.11.0

See CHANGELOG.md.

Release v40.10.0

See CHANGELOG.md.

Release v40.9.0

See CHANGELOG.md.

Release v40.8.1

See CHANGELOG.md.

Release v40.8.0

See CHANGELOG.md.

Release v40.7.0

See CHANGELOG.md.

Release v40.6.0

See CHANGELOG.md.

Release v40.5.1

See CHANGELOG.md.

Release v40.5.0

See CHANGELOG.md.

Release v40.4.0

See CHANGELOG.md.

Release v40.3.0

See CHANGELOG.md.

Release v40.2.0

See CHANGELOG.md.

Release v40.1.3

See CHANGELOG.md.

Changelog

Sourced from faker's changelog.

v40.12.0 - 2026-03-30

• Add address providers for ar_DZ and fr_DZ locales (#2341). Thanks @​othmane099.

v40.11.1 - 2026-03-23

• Fix: rebind deepcopy proxies to copied Faker instances. Thanks @​SunS1eep1ng.

v40.11.0 - 2026-03-13

• Add major Swiss banks to de_CH bank provider. Thanks @​raphael-s.

v40.10.0 - 2026-03-13

• Fix: mixed-gender names in es_MX locale. Thanks @​rodrigobnogueira.

v40.9.0 - 2026-03-13

• Fix pt_PT postalcode format in address provider. Thanks @​filipemattar.

v40.8.1 - 2026-03-13

• Fix mutable default providers. Thanks @​Dhi13man.

v40.8.0 - 2026-03-04

• Add free email domains to hu_HU locale. Thanks @​majorzoltan80.

v40.7.0 - 2026-03-04

• Improve Polish address grammar: categorize street types and prefixes. Thanks @​Francooo2221.

v40.6.0 - 2026-03-04

• Add country names to he_IL locale. Thanks @​Moo64c.

v40.5.1 - 2026-02-23

• Fix _get_local_timezone() missing return statement. Thanks @​bysiber.

v40.5.0 - 2026-02-23

• Add missing formats and remove duplicates in user_name_formats. Thanks @​WannaFight.

v40.4.0 - 2026-02-06

• Add passport and cie for it_IT. Thanks @​ElektroDuck.

v40.3.0 - 2026-02-06

... (truncated)

Commits

• fb98b61 Bump version: 40.11.1 → 40.12.0
• 00b920f 📝 Update CHANGELOG.md
• bd75873 Restore parameters stripped out by the AI
• f4bb94a exclude the scripts directory from the MANIFEST.in file
• ebfd067 Sort test cases alphabetically
• a5d09c0 Add address providers for ar_DZ and fr_DZ locales (#2341)
• db42f64 Bump version: 40.11.0 → 40.11.1
• a5b9f98 📝 Update CHANGELOG.md
• 01cb8d0 fix: rebind deepcopy proxies to copied Faker instances (#2340)
• 53314fc Bump version: 40.10.0 → 40.11.0
• Additional commits viewable in compare view

Updates pytest-cov from 7.0.0 to 7.1.0

Changelog

Sourced from pytest-cov's changelog.

7.1.0 (2026-03-21)

• Fixed total coverage computation to always be consistent, regardless of reporting settings. Previously some reports could produce different total counts, and consequently can make --cov-fail-under behave different depending on reporting options. See [#641](https://github.com/pytest-dev/pytest-cov/issues/641) <https://github.com/pytest-dev/pytest-cov/issues/641>_.

• Improve handling of ResourceWarning from sqlite3.

  The plugin adds warning filter for sqlite3 ResourceWarning unclosed database (since 6.2.0). It checks if there is already existing plugin for this message by comparing filter regular expression. When filter is specified on command line the message is escaped and does not match an expected message. A check for an escaped regular expression is added to handle this case.

  With this fix one can suppress ResourceWarning from sqlite3 from command line::

  pytest -W "ignore:unclosed database in <sqlite3.Connection object at:ResourceWarning" ...

• Various improvements to documentation. Contributed by Art Pelling in [#718](https://github.com/pytest-dev/pytest-cov/issues/718) <https://github.com/pytest-dev/pytest-cov/pull/718>_ and "vivodi" in [#738](https://github.com/pytest-dev/pytest-cov/issues/738) <https://github.com/pytest-dev/pytest-cov/pull/738>. Also closed [#736](https://github.com/pytest-dev/pytest-cov/issues/736) <https://github.com/pytest-dev/pytest-cov/issues/736>.

• Fixed some assertions in tests. Contributed by in Markéta Machová in [#722](https://github.com/pytest-dev/pytest-cov/issues/722) <https://github.com/pytest-dev/pytest-cov/pull/722>_.

• Removed unnecessary coverage configuration copying (meant as a backup because reporting commands had configuration side-effects before coverage 5.0).

Commits

• 66c8a52 Bump version: 7.0.0 → 7.1.0
• f707662 Make the examples use pypy 3.11.
• 6049a78 Make context test use the old ctracer (seems the new sysmon tracer behaves di...
• 8ebf20b Update changelog.
• 861d30e Remove the backup context manager - shouldn't be needed since coverage 5.0, ...
• fd4c956 Pass the precision on the nulled total (seems that there's some caching goion...
• 78c9c4e Only run the 3.9 on older deps.
• 4849a92 Punctuation.
• 197c35e Update changelog and hopefully I don't forget to publish release again :))
• 14dc1c9 Update examples to use 3.11 and make the adhoc layout example look a bit more...
• Additional commits viewable in compare view

Updates pytest-django from 4.11.1 to 4.12.0

Changelog

Sourced from pytest-django's changelog.

v4.12.0 (2026-02-14)

Compatibility ^^^^^^^^^^^^^

• Official Python 3.14 support.
• Dropped support for Python 3.9, minimum version is now Python 3.10.
• Official Django 6.0 support.

Improvements ^^^^^^^^^^^^

• The :ref:multiple databases <multi-db> support added in v4.3.0 is no longer considered experimental.
• Added :func:@pytest.mark.django_isolate_apps <pytest.mark.django_isolate_apps> for isolating Django's app registry in pytest tests, and a :fixture:django_isolated_apps fixture to access the isolated Apps registry instance if needed.

Commits

• a2a9495 Release 4.12.0
• 020bc23 tests: make sure access to default can also be blocked
• bcefbe8 Add support for isolating apps in tests
• 39c8dcc plugin: add a note why we reorder tests
• 1830acd pyproject.toml: require pytest 9 for self tests, switch to native toml config...
• f19da08 Fix the order of the test cases that use the live_server fixture
• 92858ee docs: add pytest 9.0+ native TOML configuration format
• 3f550d9 build(deps): bump hynek/build-and-inspect-python-package
• 1f50dd2 Drop obsolete traces of Django 5.0 in CI
• 247ec1c Fix PytestCollectionWarning for TestRunner class (#1259)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions