chore(deps): bump the python group across 1 directory with 9 updates

[dependabot]

Bumps the python group with 9 updates in the / directory:

Package	From	To
crawl4ai	0.8.0	0.8.5
browser-use	0.12.0	0.12.2
fastapi	0.134.0	0.135.1
uvicorn[standard]	0.41.0	0.42.0
tavily-python	0.7.22	0.7.23
e2b-code-interpreter	2.4.1	2.5.0
langchain-mcp-adapters	0.2.1	0.2.2
python-dotenv	1.2.1	1.2.2
ruff	0.15.4	0.15.7

Updates crawl4ai from 0.8.0 to 0.8.5

Release notes

Sourced from crawl4ai's releases.

Release v0.8.5

🎉 Crawl4AI v0.8.5 Released!

📦 Installation

PyPI:

pip install crawl4ai==0.8.5

Docker:

docker pull unclecode/crawl4ai:0.8.5
docker pull unclecode/crawl4ai:latest

Note: Docker images are being built and will be available shortly. Check the Docker Release workflow for build status.

📝 What's Changed

See CHANGELOG.md for details.

Changelog

Sourced from crawl4ai's changelog.

Changelog

All notable changes to Crawl4AI will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

Commits

• 4bf1779 feat: add version 0.8.5 release highlights including anti-bot detection, shad...
• bb6406a release: Crawl4AI v0.8.5
• f6ab207 fix: remove shared LOCK contention in monitor to prevent pod deadlock (#1754)
• 648f36b Merge pull request #1827 from hafezparast/fix/maysam-llm-provider-redis-confi...
• 6e42995 Merge pull request #1833 from hafezparast/fix/maysam-css-selector-raw-1484
• 8de83a3 fix: css_selector ignored in LXML scraping for raw:// URLs (#1484)
• bf1158a fix: upgrade Redis to 7.2.7 for CVE-2025-49844 (CVSS 10.0) (#1671)
• a73bc1c fix: MCP SSE endpoint crash — mount via raw ASGI Route (#1594)
• 3f481e9 fix: screenshot distortion, deep crawl timeout/arun_many, CLI encoding (#1370...
• 480d938 fix: /llm per-request provider override, Redis config from host/port/password...
• Additional commits viewable in compare view

Updates browser-use from 0.12.0 to 0.12.2

Release notes

Sourced from browser-use's releases.

0.12.2

What's Changed

• don't explicitly pass newWindow: false to CDP createTarget by @​laithrw in browser-use/browser-use#4283
• Update documentation links in README.md by @​Cheggin in browser-use/browser-use#4308
• Delete docs directory by @​Cheggin in browser-use/browser-use#4309
• added check for hard constraints by @​sauravpanda in browser-use/browser-use#4318
• fix: detect empty DOM after navigation and retry before reporting failure by @​sauravpanda in browser-use/browser-use#4319
• fix: prevent duplicate items in multi-page extraction via already_col… by @​sauravpanda in browser-use/browser-use#4320
• Remove free credit mentions from documentation by @​sauravpanda in browser-use/browser-use#4322
• fix: add strict data grounding rules to prevent hallucination by @​sauravpanda in browser-use/browser-use#4323
• fix: remove incorrect await on synchronous get_llm() by @​Bortlesboat in browser-use/browser-use#4305
• improved scrolling instruction for agent by @​sauravpanda in browser-use/browser-use#4325
• fix: prevent false success reporting on unresolved blocking error by @​sauravpanda in browser-use/browser-use#4324
• added current date to the judge by @​sauravpanda in browser-use/browser-use#4332
• Set google genai to 1.65.0. by @​sauravpanda in browser-use/browser-use#4339
• remove read long content action by @​sauravpanda in browser-use/browser-use#4340

New Contributors

• @​Bortlesboat made their first contribution in browser-use/browser-use#4305

Full Changelog: browser-use/browser-use@0.12.1...0.12.2

0.12.1

What's Changed

• Fix proxy auth attach handler overwriting tab tracking by @​laithrw in browser-use/browser-use#4220
• fix(#3523): storage_state restore (cookies + localStorage) by @​laithrw in browser-use/browser-use#4102
• patched gemini version by @​sauravpanda in browser-use/browser-use#4234
• Docs primary colors by @​lukasec in browser-use/browser-use#4244
• added product hunt launch banner by @​sauravpanda in browser-use/browser-use#4247
• fix browser state format in system_prompt.md by @​laithrw in browser-use/browser-use#4248
• fix: disable proxy for localhost CDP requests (#4050) by @​Chase-Xuu in browser-use/browser-use#4063
• OS documentation text by @​MagMueller in browser-use/browser-use#4250
• fix: use tempfile.gettempdir() instead of hardcoded /tmp for Windows compat by @​laithrw in browser-use/browser-use#4249
• fix(#3099): use configured default model instead of hardcoding gpt-4o by @​laithrw in browser-use/browser-use#4252
• fix: read aws_sso_auth from config instead of hardcoding True by @​Br1an67 in browser-use/browser-use#4246
• fix(agent): disable json escaping in conversation history by @​sudhanshu112233shukla in browser-use/browser-use#3878
• fix(#3124): wrong bedrock import paths in docs by @​laithrw in browser-use/browser-use#4253
• fix(mcp): ensure extracted content is used in next step (#2582) by @​sudhanshu112233shukla in browser-use/browser-use#3886
• fix(#3934): use MCP ImageContent for screenshots instead of embedding base64 in JSON by @​laithrw in browser-use/browser-use#4255
• fix channel param to select correct browser binary by @​laithrw in browser-use/browser-use#4256
• Docs production to Claude by @​MagMueller in browser-use/browser-use#4251
• Update docs by @​ShawnPana in browser-use/browser-use#4263
• fix: allow cross-origin iframe targets with empty URLs through _is_va… by @​sauravpanda in browser-use/browser-use#4264
• Update pyproject.toml by @​sauravpanda in browser-use/browser-use#4265

New Contributors

• @​lukasec made their first contribution in browser-use/browser-use#4244
• @​Br1an67 made their first contribution in browser-use/browser-use#4246

Full Changelog: browser-use/browser-use@0.12.0...0.12.1

Commits

• 509c969 remove read long content action (#4340)
• a4cd742 Merge branch 'main' into remove-read-long-content-action
• 8044181 Merge branch 'remove-read-long-content-action' of https://github.com/browser-...
• b3ea4d8 Fix prompt guidance for find_elements
• 67205aa Set google genai to 1.65.0. (#4339)
• cac74ed Merge branch 'main' into remove-read-long-content-action
• 73d64d7 remove read long content action
• 503f7cc Update pyproject.toml
• 5991c7f added current date to the judge (#4332)
• 2e394a9 Merge branch 'main' into add-current-date-to-judege
• Additional commits viewable in compare view

Updates fastapi from 0.134.0 to 0.135.1

Release notes

Sourced from fastapi's releases.

0.135.1

Fixes

• 🐛 Fix, avoid yield from a TaskGroup, only as an async context manager, closed in the request async exit stack. PR #15038 by @​tiangolo.

Docs

• ✏️ Fix typo in docs/en/docs/_llm-test.md. PR #15007 by @​adityagiri3600.
• 📝 Update Skill, optimize context, trim and refactor into references. PR #15031 by @​tiangolo.

Internal

• 👥 Update FastAPI People - Experts. PR #15037 by @​tiangolo.
• 👥 Update FastAPI People - Contributors and Translators. PR #15029 by @​tiangolo.
• 👥 Update FastAPI GitHub topic repositories. PR #15036 by @​tiangolo.

0.135.0

Features

• ✨ Add support for Server Sent Events. PR #15030 by @​tiangolo.
  • New docs: Server-Sent Events (SSE).

Commits

• ca5f60e 🔖 Release version 0.135.1
• 87f75aa 📝 Update release notes
• 8a9258b 🐛 Fix, avoid yield from a TaskGroup, only as an async context manager, closed...
• 6038507 📝 Update release notes
• c796ba4 👥 Update FastAPI People - Experts (#15037)
• b24aa03 📝 Update release notes
• 2c61047 ✏️ Fix typo in docs/en/docs/_llm-test.md (#15007)
• e3bbeef 📝 Update release notes
• d726c8c 📝 Update release notes
• cf514e6 👥 Update FastAPI People - Contributors and Translators (#15029)
• Additional commits viewable in compare view

Updates uvicorn[standard] from 0.41.0 to 0.42.0

Release notes

Sourced from uvicorn[standard]'s releases.

Version 0.42.0

Changed

• Use bytearray for request body accumulation to avoid O(n^2) allocation on fragmented bodies (#2845)

Fixed

• Escape brackets and backslash in httptools HEADER_RE regex (#2824)
• Fix multiple issues in websockets sans-io implementation (#2825)

---

New Contributors

• @​bysiber made their first contribution in Kludex/uvicorn#2825

---

Full Changelog: Kludex/uvicorn@0.41.0...0.42.0

Changelog

Sourced from uvicorn[standard]'s changelog.

0.42.0 (March 16, 2026)

Changed

• Use bytearray for request body accumulation to avoid O(n^2) allocation on fragmented bodies (#2845)

Fixed

• Escape brackets and backslash in httptools HEADER_RE regex (#2824)
• Fix multiple issues in websockets sans-io implementation (#2825)

Commits

• 02bed6f Version 0.42.0 (#2852)
• d8f2501 chore: pre-create Config objects in benchmarks to measure protocol hot paths ...
• 9dbb783 Add WebSocket protocol benchmarks for wsproto and websockets-sansio (#2849)
• b3c69da Use bytearray for request body accumulation (#2845)
• 3f3ebee Disable pytest-xdist for CodSpeed benchmark runs (#2847)
• d072de7 Add fragmented body benchmark for chunked body accumulation (#2846)
• e300c2c Add CodSpeed benchmark suite for HTTP protocol hot paths (#2844)
• 1fa6976 Escape brackets and backslash in httptools HEADER_RE regex (#2824)
• 59ec1de Fix multiple issues in websockets sansio implementation (#2825)
• 2fc0efc Clarify Windows asyncio event loop selection in docs (#2843)
• Additional commits viewable in compare view

Updates tavily-python from 0.7.22 to 0.7.23

Commits

• See full diff in compare view

Updates e2b-code-interpreter from 2.4.1 to 2.5.0

Commits

• 2dea8d5 chore(python): update Python to 3.10 (#224)
• f35baa5 Update dependency httpx to v0.28.1 (#222)
• 046fcd9 Remove: SDK Reference Artifacts (#223)
• cdb96a9 Update patch-updates (#220)
• 09b5c72 Update dependency bun to v1.3.10 (#205)
• 77d722a Update dependency tornado to v6.5.5 [SECURITY] (#217)
• 93842f9 [skip ci] Release new versions
• fb13ab0 Update Python 3.13 support and bump dependencies (#192)
• fff3df6 fix(release): chart release skipped (#218)
• aa7e267 [skip ci] Release new versions
• Additional commits viewable in compare view

Updates langchain-mcp-adapters from 0.2.1 to 0.2.2

Release notes

Sourced from langchain-mcp-adapters's releases.

langchain-mcp-adapters==0.2.2

What's Changed

• fix: runtime needs annotation as injected arg by @​sydney-runkle in langchain-ai/langchain-mcp-adapters#407
• build(deps): bump actions/download-artifact from 6 to 7 by @​dependabot[bot] in langchain-ai/langchain-mcp-adapters#396
• build(deps): bump actions/upload-artifact from 5 to 6 by @​dependabot[bot] in langchain-ai/langchain-mcp-adapters#395
• chore: pin ncipollo/release-action to v1.20.0 by @​jkennedyvz in langchain-ai/langchain-mcp-adapters#414
• build(deps): bump the uv group across 2 directories with 6 updates by @​dependabot[bot] in langchain-ai/langchain-mcp-adapters#415
• build(deps): bump the uv group across 2 directories with 4 updates by @​dependabot[bot] in langchain-ai/langchain-mcp-adapters#422
• build(deps): bump actions/download-artifact from 7 to 8 by @​dependabot[bot] in langchain-ai/langchain-mcp-adapters#427
• build(deps): bump actions/upload-artifact from 6 to 7 by @​dependabot[bot] in langchain-ai/langchain-mcp-adapters#428
• build(deps): bump the uv group across 1 directory with 2 updates by @​dependabot[bot] in langchain-ai/langchain-mcp-adapters#433
• fix: resolve ${VAR} env variable references in stdio config by @​awg66 in langchain-ai/langchain-mcp-adapters#438
• release: 0.2.2 by @​mdrxy in langchain-ai/langchain-mcp-adapters#440

New Contributors

• @​jkennedyvz made their first contribution in langchain-ai/langchain-mcp-adapters#414

Full Changelog: langchain-ai/langchain-mcp-adapters@langchain-mcp-adapters==0.2.1...langchain-mcp-adapters==0.2.2

Commits

• fa2a083 release: 0.2.2 (#440)
• bdfe8d9 fix: resolve ${VAR} env variable references in stdio config (#438)
• df0bd8c build(deps): bump the uv group across 1 directory with 2 updates (#433)
• 3f48e5a build(deps): bump actions/upload-artifact from 6 to 7 (#428)
• db004a8 build(deps): bump actions/download-artifact from 7 to 8 (#427)
• 141be26 build(deps): bump the uv group across 2 directories with 4 updates (#422)
• ccdcfbe build(deps): bump the uv group across 2 directories with 6 updates (#415)
• e6897f9 chore: pin ncipollo/release-action to v1.20.0 (#414)
• f15d1b6 build(deps): bump actions/upload-artifact from 5 to 6 (#395)
• c9a34fe build(deps): bump actions/download-artifact from 6 to 7 (#396)
• Additional commits viewable in compare view

Updates python-dotenv from 1.2.1 to 1.2.2

Release notes

Sourced from python-dotenv's releases.

v1.2.2

Added

• Support for Python 3.14, including the free-threaded (3.14t) build. (#)

Changed

• The dotenv run command now forwards flags directly to the specified command by @​bbc2 in theskumar/python-dotenv#607
• Improved documentation clarity regarding override behavior and the reference page.
• Updated PyPy support to version 3.11.
• Documentation for FIFO file support.
• Support for Python 3.9.

Fixed

• Improved set_key and unset_key behavior when interacting with symlinks by @​bbc2 in #790c5
• Corrected the license specifier and added missing Python 3.14 classifiers in package metadata by @​JYOuyang in theskumar/python-dotenv#590

Breaking Changes

• dotenv.set_key and dotenv.unset_key used to follow symlinks in some situations. This is no longer the case. For that behavior to be restored in all cases, follow_symlinks=True should be used.

• In the CLI, set and unset used to follow symlinks in some situations. This is no longer the case.

• dotenv.set_key, dotenv.unset_key and the CLI commands set and unset used to reset the file mode of the modified .env file to 0o600 in some situations. This is no longer the case: The original mode of the file is now preserved. Is the file needed to be created or wasn't a regular file, mode 0o600 is used.

Misc

• skip 000 permission tests for root user by @​burnout-projects in theskumar/python-dotenv#561
• Bump actions/checkout from 5 to 6 in the github-actions group by @​dependabot[bot] in theskumar/python-dotenv#593
• Add Windows testing to CI by @​bbc2 in theskumar/python-dotenv#604
• Improve workflow efficiency with best practices by @​theskumar in theskumar/python-dotenv#609
• Remove the use of sh in tests by @​bbc2 in theskumar/python-dotenv#612

New Contributors

• @​JYOuyang made their first contribution in theskumar/python-dotenv#590
• @​burnout-projects made their first contribution in theskumar/python-dotenv#561
• @​cpackham-atlnz made their first contribution in theskumar/python-dotenv#597

Full Changelog: theskumar/python-dotenv@v1.2.1...v1.2.2

Changelog

Sourced from python-dotenv's changelog.

[1.2.2] - 2026-03-01

Added

• Support for Python 3.14, including the free-threaded (3.14t) build. (#588)

Changed

• The dotenv run command now forwards flags directly to the specified command by [@​bbc2] in #607
• Improved documentation clarity regarding override behavior and the reference page.
• Updated PyPy support to version 3.11.
• Documentation for FIFO file support.
• Dropped Support for Python 3.9.

Fixed

• Improved set_key and unset_key behavior when interacting with symlinks by [@​bbc2] in [790c5c0]
• Corrected the license specifier and added missing Python 3.14 classifiers in package metadata by [@​JYOuyang] in #590

Breaking Changes

• dotenv.set_key and dotenv.unset_key used to follow symlinks in some situations. This is no longer the case. For that behavior to be restored in all cases, follow_symlinks=True should be used.

• In the CLI, set and unset used to follow symlinks in some situations. This is no longer the case.

• dotenv.set_key, dotenv.unset_key and the CLI commands set and unset used to reset the file mode of the modified .env file to 0o600 in some situations. This is no longer the case: The original mode of the file is now preserved. Is the file needed to be created or wasn't a regular file, mode 0o600 is used.

Commits

• 36004e0 Bump version: 1.2.1 → 1.2.2
• eb20252 docs: update changelog for v1.2.2
• 790c5c0 Merge commit from fork
• 43340da Remove the use of sh in tests (#612)
• 09d7cee docs: clarify override behavior and document FIFO support (#610)
• c8de288 ci: improve workflow efficiency with best practices (#609)
• 7bd9e3d Add Windows testing to CI (#604)
• 1baaf04 Drop Python 3.9 support and update to PyPy 3.11 (#608)
• 4a22cf8 ci: enable testing on Python 3.14t (free-threaded) (#588)
• e2e8e77 Fix license specifier (#597)
• Additional commits viewable in compare view

Updates ruff from 0.15.4 to 0.15.7

Release notes

Sourced from ruff's releases.

0.15.7

Release Notes

Released on 2026-03-19.

Preview features

• Display output severity in preview (#23845)
• Don't show noqa hover for non-Python documents (#24040)

Rule changes

• [pycodestyle] Recognize pyrefly: as a pragma comment (E501) (#24019)

Server

• Don't return code actions for non-Python documents (#23905)

Documentation

• Add company AI policy to contributing guide (#24021)
• Document editor features for Markdown code formatting (#23924)
• [pylint] Improve phrasing (PLC0208) (#24033)

Other changes

• Use PEP 639 license information (#19661)

Contributors

• @​tmimmanuel
• @​DimitriPapadopoulos
• @​amyreese
• @​statxc
• @​dylwil3
• @​hunterhogan
• @​renovate

Install ruff 0.15.7

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.7/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://releases.astral.sh/github/ruff/releases/download/0.15.7/ruff-installer.ps1 | iex"
</tr></table> 

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.7

Released on 2026-03-19.

Preview features

• Display output severity in preview (#23845)
• Don't show noqa hover for non-Python documents (#24040)

Rule changes

• [pycodestyle] Recognize pyrefly: as a pragma comment (E501) (#24019)

Server

• Don't return code actions for non-Python documents (#23905)

Documentation

• Add company AI policy to contributing guide (#24021)
• Document editor features for Markdown code formatting (#23924)
• [pylint] Improve phrasing (PLC0208) (#24033)

Other changes

• Use PEP 639 license information (#19661)

Contributors

• @​tmimmanuel
• @​DimitriPapadopoulos
• @​amyreese
• @​statxc
• @​dylwil3
• @​hunterhogan
• @​renovate

0.15.6

Released on 2026-03-12.

Preview features

• Add support for lazy import parsing (#23755)
• Add support for star-unpacking of comprehensions (PEP 798) (#23788)
• Reject semantic syntax errors for lazy imports (#23757)
• Drop a few rules from the preview default set (#23879)
• [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#23584)
• [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#23631)
• [flake8-bugbear] Implement delattr-with-constant (B043) (#23737)

... (truncated)

Commits

• 0ef39de Bump 0.15.7 (#24049)
• beb543b [ty] ecosystem-analyzer: Fail on newly panicking projects (#24043)
• 378fe73 Don't show noqa hover for non-Python documents (#24040)
• b5665bd [pylint] Improve phrasing (PLC0208) (#24033)
• 6e20f22 test: migrate show_settings and version tests to use CliTest (#23702)
• f99b284 Drain file watcher events during test setup (#24030)
• 744c996 [ty] Filter out unsatisfiable inference attempts during generic call narrowin...
• 1616095 [ty] Avoid inferring intersection types for call arguments (#23933)
• 7f275f4 [ty] Pin mypy_primer in setup_primer_project.py (#24020)
• 7255e36 [pycodestyle] Recognize pyrefly: as a pragma comment (E501) (#24019)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.