chore(deps-dev): bump the development-dependencies group with 3 updates

[dependabot]

Bumps the development-dependencies group with 3 updates: boto3-stubs, moto and ruff.

Updates boto3-stubs from 1.35.54 to 1.35.57

Commits

• See full diff in compare view

Updates moto from 5.0.18 to 5.0.20

Changelog

Sourced from moto's changelog.

5.0.20

Docker Digest for 5.0.20: sha256:a1041f318c56ed341c70541647b256d40dae776ce654ca4db9d27d94600542a1

Miscellaneous:
    * Removed runtime-dependency on `typing_extensions`

5.0.19

Docker Digest for 5.0.19: sha256:5d857d7ce17a9b1dadea166d8e0d310771983f026334a555a9d2690a370cf904

New Methods:
    * ELBv2:
        * describe_listener_attributes()
        * modify_listener_attributes()
* Panorama:
    * create_application_instance()
    * describe_application_instance()
    * describe_application_instance_details()
    * list_application_instances()

WAFv2:

create_rule_group()
delete_rule_group()
get_rule_group()
update_rule_group()





Miscellaneous:

* CloudFormation now supports the types AWS::IoT::Thing, AWS::IoT::ThingType, AWS::IoT::Policy

* EC2: Key Pairs now use the correct algorithm to calculate the fingerprint

* ELBv2: modify_lb_attr() now supports zonal-shift config

* ECS: create_task_set() now actually creates tasks

* Lambda: The MOTO_DOCKER_LAMBDA_IMAGE config option now accepts full image names, including the tag

* Lambda: Events send to DynamoDB now have the correct eventName

* Organizations: describe_organization() now describes the parent account (if applicable)

* WAFv2: create_web_acl() now supports additional parameters (AssociationConfig, CaptchaConfig, ChallengeConfig, CustomResponseBodies, TokenDomains)

* WAFv2: delete_web_acl() now supports the LockToken-parameter

* WAFv2: update_web_acl() now supports additional parameters (LockToken, AssociationConfig, CaptchaConfig, ChallengeConfig, CustomResponseBodies, TokenDomains)

Commits

• 1b91aee Pre-Release: Up Version Number
• 58952db Prep release 5.0.20
• bb27c62 Fix #8289 by only requiring typing_extensions in TYPE_CHECKING mode (#8290)
• 32e7efe chore: update SSM default parameters (#8285)
• 747bbad Admin: Post-release steps
• 0f2f33c Pre-Release: Up Version Number
• 715f592 Prep release 5.0.19 (#8284)
• 83383c9 ECS: create_task_set() now creates tasks (#8281)
• 0aa3edc chore: update EC2 Instance Offerings (#8282)
• bc221b5 chore: update EC2 Instance Types (#8283)
• Additional commits viewable in compare view

Updates ruff from 0.7.2 to 0.7.3

Release notes

Sourced from ruff's releases.

0.7.3

Release Notes

Preview features

• Formatter: Disallow single-line implicit concatenated strings (#13928)
• [flake8-pyi] Include all Python file types for PYI006 and PYI066 (#14059)
• [flake8-simplify] Implement split-of-static-string (SIM905) (#14008)
• [refurb] Implement subclass-builtin (FURB189) (#14105)
• [ruff] Improve diagnostic messages and docs (RUF031, RUF032, RUF034) (#14068)

Rule changes

• Detect items that hash to same value in duplicate sets (B033, PLC0208) (#14064)
• [eradicate] Better detection of IntelliJ language injection comments (ERA001) (#14094)
• [flake8-pyi] Add autofix for docstring-in-stub (PYI021) (#14150)
• [flake8-pyi] Update duplicate-literal-member (PYI062) to alawys provide an autofix (#14188)
• [pyflakes] Detect items that hash to same value in duplicate dictionaries (F601) (#14065)
• [ruff] Fix false positive for decorators (RUF028) (#14061)

Bug fixes

• Avoid parsing joint rule codes as distinct codes in # noqa (#12809)
• [eradicate] ignore # language= in commented-out-code rule (ERA001) (#14069)
• [flake8-bugbear] - do not run mutable-argument-default on stubs (B006) (#14058)
• [flake8-builtins] Skip lambda expressions in builtin-argument-shadowing (A002) (#14144)
• [flake8-comprehension] Also remove trailing comma while fixing C409 and C419 (#14097)
• [flake8-simplify] Allow open without context manager in return statement (SIM115) (#14066)
• [pylint] Respect hash-equivalent literals in iteration-over-set (PLC0208) (#14063)
• [pylint] Update known dunder methods for Python 3.13 (PLW3201) (#14146)
• [pyupgrade] - ignore kwarg unpacking for UP044 (#14053)
• [refurb] Parse more exotic decimal strings in verbose-decimal-constructor (FURB157) (#14098)

Documentation

• Add links to missing related options within rule documentations (#13971)
• Add rule short code to mkdocs tags to allow searching via rule codes (#14040)

Install ruff 0.7.3

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.7.3/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.7.3/ruff-installer.ps1 | iex"
</tr></table> 

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.3

Preview features

• Formatter: Disallow single-line implicit concatenated strings (#13928)
• [flake8-pyi] Include all Python file types for PYI006 and PYI066 (#14059)
• [flake8-simplify] Implement split-of-static-string (SIM905) (#14008)
• [refurb] Implement subclass-builtin (FURB189) (#14105)
• [ruff] Improve diagnostic messages and docs (RUF031, RUF032, RUF034) (#14068)

Rule changes

• Detect items that hash to same value in duplicate sets (B033, PLC0208) (#14064)
• [eradicate] Better detection of IntelliJ language injection comments (ERA001) (#14094)
• [flake8-pyi] Add autofix for docstring-in-stub (PYI021) (#14150)
• [flake8-pyi] Update duplicate-literal-member (PYI062) to alawys provide an autofix (#14188)
• [pyflakes] Detect items that hash to same value in duplicate dictionaries (F601) (#14065)
• [ruff] Fix false positive for decorators (RUF028) (#14061)

Bug fixes

• Avoid parsing joint rule codes as distinct codes in # noqa (#12809)
• [eradicate] ignore # language= in commented-out-code rule (ERA001) (#14069)
• [flake8-bugbear] - do not run mutable-argument-default on stubs (B006) (#14058)
• [flake8-builtins] Skip lambda expressions in builtin-argument-shadowing (A002) (#14144)
• [flake8-comprehension] Also remove trailing comma while fixing C409 and C419 (#14097)
• [flake8-simplify] Allow open without context manager in return statement (SIM115) (#14066)
• [pylint] Respect hash-equivalent literals in iteration-over-set (PLC0208) (#14063)
• [pylint] Update known dunder methods for Python 3.13 (PLW3201) (#14146)
• [pyupgrade] - ignore kwarg unpacking for UP044 (#14053)
• [refurb] Parse more exotic decimal strings in verbose-decimal-constructor (FURB157) (#14098)

Documentation

• Add links to missing related options within rule documentations (#13971)
• Add rule short code to mkdocs tags to allow searching via rule codes (#14040)

Commits

• fbf140a Bump version to 0.7.3 (#14197)
• 670f958 [red-knot] Fix intersection simplification for ~Any/~Unknown (#14195)
• fed35a2 [red-knot] Fix is_assignable_to for unions (#14196)
• d1ef418 Docs: tweak rules documentation (#14180)
• 272d24b [flake8-pyi] Add a fix for duplicate-literal-member (#14188)
• 2624249 [red-knot] Minor: fix Literal[True] <: int (#14177)
• 4b08d17 [red-knot] Add a new Type::KnownInstanceType variant (#14155)
• 5b6169b [red-knot] Minor fix in intersection type comment (#14176)
• 2040e93 [flake8-logging-format] Fix invalid formatting value in docs of `logging-ex...
• 794eb88 [flake8-bandit] Typo in docs suspicious-pickle-import (S403) (#14175)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions