Bump the dependabot group with 4 updates

[dependabot]

Bumps the dependabot group with 4 updates: certifi, idna, pydantic-core and wrapt.

Updates certifi from 2026.4.22 to 2026.5.20

Commits

• d7ea151 2026.05.20 (#413)
• See full diff in compare view

Updates idna from 3.15 to 3.16

Changelog

Sourced from idna's changelog.

3.16 (2026-05-22)

• Add a command-line interface (python -m idna, also available as the idna script). Encodes or decodes one or more domains supplied as arguments or on standard input, with options to select A-label or U-label output and control error handling.
• Raise the minimum supported Python version to 3.9
• Various code quality improvements

Commits

• 6d1a0de Release 3.16
• 4e6cbe2 Demote installation instruction to usage section
• 223533c Merge branch 'readme-simplification' into release-3.16
• b1640b2 Bump version to 3.16rc0
• 3a86113 Update history for 3.16 release
• d4bc9e7 Merge pull request #246 from kjd/python-3.9
• a21d9fc Update deprecation policy
• b464926 Raise minimum Python to 3.9 and modernize typing
• 7f3b15e Explicit example not needed
• 7530c70 Remove unnecessary print()
• Additional commits viewable in compare view

Updates pydantic-core from 2.46.0 to 2.47.0

Commits

• See full diff in compare view

Updates wrapt from 2.1.1 to 2.2.1

Release notes

Sourced from wrapt's releases.

wrapt 2.2.1

Full release notes: https://wrapt.readthedocs.io/en/latest/changes.html#version-2-2-1

Install from PyPi (recommended):

pip install wrapt==2.2.1

PyPi uploads follow each GitHub release; if pip reports the version is unavailable, the matching PyPi upload may not have happened yet.

Pre-built wheels are provided for a range of Python versions and platforms (Linux x86_64/aarch64/riscv64, macOS x86_64 and arm64, Windows x86_64 and arm64, plus PyPy and free-threaded builds). The source distribution is also attached together with SHA256SUMS for verification.

wrapt 2.2.1rc1

Release candidate. Release notes for the upcoming 2.2.1 final (work in progress): https://wrapt.readthedocs.io/en/latest/changes.html#version-2-2-1

May be installable from PyPi:

pip install wrapt==2.2.1rc1

If pip reports the version is unavailable, this candidate either has not been uploaded yet or is not being published to PyPi. Use the attached wheels or build from the source distribution instead:

tar xf wrapt-2.2.1rc1.tar.gz
cd wrapt-2.2.1rc1
pip install .

SHA256SUMS is attached for verification of the archives.

wrapt 2.2.0

Full release notes: https://wrapt.readthedocs.io/en/latest/changes.html#version-2-2-0

Install from PyPi (recommended):

pip install wrapt==2.2.0

PyPi uploads follow each GitHub release; if pip reports the version is unavailable, the matching PyPi upload may not have happened yet.

Pre-built wheels are provided for a range of Python versions and platforms (Linux x86_64/aarch64/riscv64, macOS x86_64 and arm64, Windows x86_64 and arm64, plus PyPy and free-threaded

... (truncated)

Changelog

Sourced from wrapt's changelog.

Version 2.2.1

Bugs Fixed

• Reverted the change in 2.2.0 which had aligned the C implementation of FunctionWrapper.__get__ with the pure Python implementation by substituting Py_None for NULL before invoking the wrapped descriptor's __get__ slot. The change was based on a misreading of what the pure Python path does once it crosses back into C. The pure Python path calls self.__wrapped__.__get__(None, owner) from Python, and for any built-in descriptor that call is dispatched through the __get__ slot wrapper inside CPython, which converts Py_None back to NULL before the wrapped descriptor's tp_descr_get is invoked. The pre 2.2.0 C path called tp_descr_get directly with obj as received, which is NULL on class access, so it was already producing the same value the Python path produces after the slot wrapper's Py_None to NULL conversion. Substituting Py_None for NULL before tp_descr_get was called caused the wrapped descriptor to see a value it would never see during ordinary class attribute lookup. Native CPython descriptors other than func_descr_get fast path on obj == NULL and return the descriptor unchanged. With Py_None substituted in they fall through to a type check against the owner type of the descriptor, and NoneType does not satisfy that check, so a TypeError is raised. This broke class attribute access for any built-in or C extension descriptor (method_descriptor, wrapper_descriptor, getset_descriptor, member_descriptor) wrapped by @wrapt.decorator or @wrapt.function_wrapper. The failure mode is most likely to show up in instrumentation libraries that monkey patch built-in methods onto classes and where some inspection or binding step then accesses the wrapped attribute through the class. The existing test suite did not catch the regression because all wrappers in the test suite are applied to pure Python functions, whose func_descr_get slot treats NULL and Py_None equivalently. A new regression test has been added which wraps a method_descriptor and exercises class attribute access, so the missing coverage of non-function descriptors is now in place. With thanks to brettlangdon <https://github.com/brettlangdon>_ for reporting the regression and identifying the underlying cause.

Version 2.2.0

A special thanks to devdanzin <https://github.com/devdanzin>_ for providing an extremely useful analysis of issues in the wrapt C extension. Their analysis led to the majority of the fixes and updates in this release and their help is much appreciated.

New Features

... (truncated)

Commits

• 787db02 Merge branch 'release/2.2.1'
• da8f21f Update to 2.2.1 for final release.
• d89dce9 Skip CPython specific descriptor tests on PyPy.
• 86f4e0e Go with 2.2.1rc1 instead of 2.2.1.dev1.
• 94bd940 Run descriptor get tests against both implementations.
• 00541d5 Merge branch 'develop' of github.com:GrahamDumpleton/wrapt into develop
• daddcfe Merge pull request #341 from brettlangdon/brettlangdon/descriptor.tests
• 0583a12 Revert Py_None substitution in C FunctionWrapper.get.
• f8d4a2e Add test coverage for native descriptors
• 0dbbba1 Update to 2.2.1.dev1 to test fixes.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coveralls]

Coverage Report for CI Build 26495087865

Coverage remained the same at 88.617%

Details

• Coverage remained the same as the base build.
• Patch coverage: No coverable lines changed in this PR.
• No coverage regressions found.

Uncovered Changes

No uncovered changes found.

Coverage Regressions

No coverage regressions found.

---

Coverage Stats

Relevant Lines:	3470
Covered Lines:	3075
Line Coverage:	88.62%
Coverage Strength:	0.89 hits per line

---

💛 - Coveralls