From cf97fe659e4e64502a03c55778b2c50750285adb Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 3 Feb 2026 00:50:58 +0000
Subject: [PATCH 1/4] Bump pip from 25.3 to 26.0 in /requirements in the pip
 group across 1 directory (#12018)

Bumps the pip group with 1 update in the /requirements directory:
[pip](https://github.com/pypa/pip).

Updates `pip` from 25.3 to 26.0
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/pip/blob/main/NEWS.rst">pip's
changelog</a>.</em></p>
<blockquote>
<h1>26.0 (2026-01-30)</h1>
<h2>Deprecations and Removals</h2>
<ul>
<li>Remove support for non-bare project names in egg fragments. Affected
users should use
the <code>Direct URL requirement syntax
&lt;https://packaging.python.org/en/latest/specifications/version-specifiers/#direct-references&gt;</code><em>.
(<code>[#13157](https://github.com/pypa/pip/issues/13157)
&lt;https://github.com/pypa/pip/issues/13157&gt;</code></em>)</li>
</ul>
<h2>Features</h2>
<ul>
<li>
<p>Display pip's command-line help in colour, if possible.
(<code>[#12134](https://github.com/pypa/pip/issues/12134)
&lt;https://github.com/pypa/pip/issues/12134&gt;</code>_)</p>
</li>
<li>
<p>Support installing dependencies declared with inline script metadata
(:pep:<code>723</code>) with <code>--requirements-from-script</code>.
(<code>[#12891](https://github.com/pypa/pip/issues/12891)
&lt;https://github.com/pypa/pip/issues/12891&gt;</code>_)</p>
</li>
<li>
<p>Add <code>--all-releases</code> and <code>--only-final</code> options
to control pre-release
and final release selection during package installation.
(<code>[#13221](https://github.com/pypa/pip/issues/13221)
&lt;https://github.com/pypa/pip/issues/13221&gt;</code>_)</p>
</li>
<li>
<p>Add <code>--uploaded-prior-to</code> option to only consider packages
uploaded prior to
a given datetime when the <code>upload-time</code> field is available
from a remote index.
(<code>[#13625](https://github.com/pypa/pip/issues/13625)
&lt;https://github.com/pypa/pip/issues/13625&gt;</code>_)</p>
</li>
<li>
<p>Add <code>--use-feature inprocess-build-deps</code> to request that
build dependencies are installed
within the same pip install process. This new mechanism is faster,
supports <code>--no-clean</code>
and <code>--no-cache-dir</code> reliably, and supports prompting for
authentication.</p>
<p>Enabling this feature will also enable <code>--use-feature
build-constraints</code>. This feature will
become the default in a future pip version.
(<code>[#9081](https://github.com/pypa/pip/issues/9081)
&lt;https://github.com/pypa/pip/issues/9081&gt;</code>_)</p>
</li>
<li>
<p><code>pip cache purge</code> and <code>pip cache remove</code> now
clean up empty directories
and legacy files left by older pip versions.
(<code>[#9058](https://github.com/pypa/pip/issues/9058)
&lt;https://github.com/pypa/pip/issues/9058&gt;</code>_)</p>
</li>
</ul>
<h2>Bug Fixes</h2>
<ul>
<li>Fix selecting pre-release versions when only pre-releases match.
For example, <code>package&gt;1.0</code> with versions <code>1.0,
2.0rc1</code> now installs
<code>2.0rc1</code> instead of failing.
(<code>[#13746](https://github.com/pypa/pip/issues/13746)
&lt;https://github.com/pypa/pip/issues/13746&gt;</code>_)</li>
<li>Revisions in version control URLs now must be percent-encoded.
For example, use <code>git+https://example.com/repo.git@issue%231</code>
to specify the branch <code>issue#1</code>.
If you previously used a branch name containing a <code>%</code>
character in a version control URL, you now need to replace it with
<code>%25</code> to ensure correct percent-encoding.
(<code>[#13407](https://github.com/pypa/pip/issues/13407)
&lt;https://github.com/pypa/pip/issues/13407&gt;</code>_)</li>
<li>Preserve original casing when a path is displayed.
(<code>[#6823](https://github.com/pypa/pip/issues/6823)
&lt;https://github.com/pypa/pip/issues/6823&gt;</code>_)</li>
<li>Fix bash completion when the <code>$IFS</code> variable has been
modified from its default.
(<code>[#13555](https://github.com/pypa/pip/issues/13555)
&lt;https://github.com/pypa/pip/issues/13555&gt;</code>_)</li>
<li>Precompute Python requirements on each candidate, reducing time of
long resolutions.
(<code>[#13656](https://github.com/pypa/pip/issues/13656)
&lt;https://github.com/pypa/pip/issues/13656&gt;</code>_)</li>
<li>Skip redundant work converting version objects to strings when using
the
<code>importlib.metadata</code> backend.
(<code>[#13660](https://github.com/pypa/pip/issues/13660)
&lt;https://github.com/pypa/pip/issues/13660&gt;</code>_)</li>
<li>Fix <code>pip index versions</code> to honor only-binary/no-binary
options. (<code>[#13682](https://github.com/pypa/pip/issues/13682)
&lt;https://github.com/pypa/pip/issues/13682&gt;</code>_)</li>
<li>Fix fallthrough logic for options, allowing overriding global
options with
defaults from user config.
(<code>[#13703](https://github.com/pypa/pip/issues/13703)
&lt;https://github.com/pypa/pip/issues/13703&gt;</code>_)</li>
<li>Use a path-segment prefix comparison, not char-by-char.
(<code>[#13777](https://github.com/pypa/pip/issues/13777)
&lt;https://github.com/pypa/pip/issues/13777&gt;</code>_)</li>
</ul>
<h2>Vendored Libraries</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pypa/pip/commit/2f4d4a836ed00076001376fbb0ce6dc4f22cdae2"><code>2f4d4a8</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/13779">#13779</a> from
notatallshaw/fix-26.0-news</li>
<li><a
href="https://github.com/pypa/pip/commit/04307a42261749cfa1c86a5537ad88f44ed2a41a"><code>04307a4</code></a>
fix 26.0 news</li>
<li><a
href="https://github.com/pypa/pip/commit/6ec7b0a488f614a7632442fe7c651957fdb5fc85"><code>6ec7b0a</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/13775">#13775</a> from
notatallshaw/release/26.0</li>
<li><a
href="https://github.com/pypa/pip/commit/4104356cd83d1614af45d203d64cb84705dad9d2"><code>4104356</code></a>
Bump for release</li>
<li><a
href="https://github.com/pypa/pip/commit/58be8836b68814295d33bc5c56c38d3a0659ae81"><code>58be883</code></a>
Update AUTHORS.txt</li>
<li><a
href="https://github.com/pypa/pip/commit/66f2dece5ba9cc0ee9fe7035c46ba4b0756559b5"><code>66f2dec</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/13778">#13778</a> from
ichard26/docs/groups</li>
<li><a
href="https://github.com/pypa/pip/commit/0214103df7d7e6e3de3b8352ce3a3135437124f0"><code>0214103</code></a>
doc: Re-expose package selection group options</li>
<li><a
href="https://github.com/pypa/pip/commit/fdbe7628f3ce5d99ac5962fa9dba9e31f3738fcc"><code>fdbe762</code></a>
Install pip within docs Nox sessions</li>
<li><a
href="https://github.com/pypa/pip/commit/8e227a9be4faa9594e05d02ca05a413a2a4e7735"><code>8e227a9</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/13777">#13777</a> from
sethmlarson/commonpath</li>
<li><a
href="https://github.com/pypa/pip/commit/f5315ad96808c106a5c73936cebd335082be406e"><code>f5315ad</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/13776">#13776</a> from
ichard26/docs/versionadded</li>
<li>Additional commits viewable in <a
href="https://github.com/pypa/pip/compare/25.3...26.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pip&package-manager=pip&previous-version=25.3&new-version=26.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/aio-libs/aiohttp/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 112 +++++++++++++++++------------------
 requirements/dev.txt         | 106 ++++++++++++++++-----------------
 2 files changed, 109 insertions(+), 109 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index a3fe123811f..eacfe7691b0 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -6,34 +6,34 @@
 #
 aiodns==4.0.0
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/runtime-deps.in
+    #   -r lint.in
+    #   -r runtime-deps.in
 aiohappyeyeballs==2.6.1
-    # via -r requirements/runtime-deps.in
+    # via -r runtime-deps.in
 aiohttp-theme==0.1.7
-    # via -r requirements/doc.in
+    # via -r doc.in
 aiosignal==1.4.0
-    # via -r requirements/runtime-deps.in
+    # via -r runtime-deps.in
 alabaster==1.0.0
     # via sphinx
 annotated-types==0.7.0
     # via pydantic
 async-timeout==5.0.1 ; python_version < "3.11"
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   valkey
 babel==2.18.0
     # via sphinx
 backports-zstd==1.3.0 ; implementation_name == "cpython"
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/runtime-deps.in
+    #   -r lint.in
+    #   -r runtime-deps.in
 blockbuster==1.5.26
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 brotli==1.2.0 ; platform_python_implementation == "CPython"
-    # via -r requirements/runtime-deps.in
+    # via -r runtime-deps.in
 build==1.4.0
     # via pip-tools
 certifi==2026.1.4
@@ -55,12 +55,12 @@ click==8.3.1
     #   wait-for-it
 coverage==7.13.2
     # via
-    #   -r requirements/test-common.in
+    #   -r test-common.in
     #   pytest-cov
 cryptography==46.0.3
     # via trustme
 cython==3.2.4
-    # via -r requirements/cython.in
+    # via -r cython.in
 distlib==0.4.0
     # via virtualenv
 docutils==0.21.2
@@ -75,14 +75,14 @@ forbiddenfruit==0.1.4
     # via blockbuster
 freezegun==1.5.5
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 frozenlist==1.8.0
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   aiosignal
 gunicorn==24.1.1
-    # via -r requirements/base.in
+    # via -r base.in
 identify==2.6.16
     # via pre-commit
 idna==3.7
@@ -96,8 +96,8 @@ iniconfig==2.3.0
     # via pytest
 isal==1.7.2 ; python_version < "3.14"
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 jinja2==3.1.6
     # via
     #   sphinx
@@ -112,13 +112,13 @@ mdurl==0.1.2
     # via markdown-it-py
 multidict==6.7.1
     # via
-    #   -r requirements/multidict.in
-    #   -r requirements/runtime-deps.in
+    #   -r multidict.in
+    #   -r runtime-deps.in
     #   yarl
 mypy==1.19.1 ; implementation_name == "cpython"
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 mypy-extensions==1.1.0
     # via mypy
 nodeenv==1.10.0
@@ -133,9 +133,9 @@ packaging==26.0
 pathspec==1.0.4
     # via mypy
 pip-tools==7.5.2
-    # via -r requirements/dev.in
+    # via -r dev.in
 pkgconfig==1.5.5
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 platformdirs==4.5.1
     # via virtualenv
 pluggy==1.6.0
@@ -143,15 +143,15 @@ pluggy==1.6.0
     #   pytest
     #   pytest-cov
 pre-commit==4.5.1
-    # via -r requirements/lint.in
+    # via -r lint.in
 propcache==0.4.1
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   yarl
 proxy-py==2.4.10
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 pycares==5.0.1
     # via aiodns
 pycparser==3.0
@@ -173,30 +173,30 @@ pyproject-hooks==1.2.0
     #   pip-tools
 pytest==9.0.2
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
     #   pytest-codspeed
     #   pytest-cov
     #   pytest-mock
     #   pytest-xdist
 pytest-codspeed==4.2.0
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 pytest-cov==7.0.0
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 pytest-mock==3.15.1
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 pytest-xdist==3.8.0
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 pyyaml==6.0.3
     # via pre-commit
 requests==2.32.5
@@ -206,16 +206,16 @@ requests==2.32.5
 rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 six==1.17.0
     # via python-dateutil
 slotscheck==0.19.1
-    # via -r requirements/lint.in
+    # via -r lint.in
 snowballstemmer==3.0.1
     # via sphinx
 sphinx==8.1.3
     # via
-    #   -r requirements/doc.in
+    #   -r doc.in
     #   sphinxcontrib-spelling
     #   sphinxcontrib-towncrier
 sphinxcontrib-applehelp==2.0.0
@@ -231,9 +231,9 @@ sphinxcontrib-qthelp==2.0.0
 sphinxcontrib-serializinghtml==2.0.0
     # via sphinx
 sphinxcontrib-spelling==8.0.2 ; platform_system != "Windows"
-    # via -r requirements/doc-spelling.in
+    # via -r doc-spelling.in
 sphinxcontrib-towncrier==0.5.0a0
-    # via -r requirements/doc.in
+    # via -r doc.in
 tomli==2.3.0
     # via
     #   build
@@ -246,15 +246,15 @@ tomli==2.3.0
     #   towncrier
 towncrier==25.8.0
     # via
-    #   -r requirements/doc.in
+    #   -r doc.in
     #   sphinxcontrib-towncrier
 trustme==1.2.1 ; platform_machine != "i686"
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 typing-extensions==4.15.0 ; python_version < "3.13"
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   aiosignal
     #   cryptography
     #   exceptiongroup
@@ -271,25 +271,25 @@ urllib3==2.6.3
     # via requests
 uvloop==0.21.0 ; platform_system != "Windows"
     # via
-    #   -r requirements/base.in
-    #   -r requirements/lint.in
+    #   -r base.in
+    #   -r lint.in
 valkey==6.1.1
-    # via -r requirements/lint.in
+    # via -r lint.in
 virtualenv==20.36.1
     # via pre-commit
 wait-for-it==2.3.0
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 wheel==0.46.3
     # via pip-tools
 yarl==1.22.0
-    # via -r requirements/runtime-deps.in
+    # via -r runtime-deps.in
 zlib-ng==1.0.0
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 
 # The following packages are considered to be unsafe in a requirements file:
-pip==25.3
+pip==26.0
     # via pip-tools
 setuptools==80.10.2
     # via pip-tools
diff --git a/requirements/dev.txt b/requirements/dev.txt
index e1ab605bc6a..07fe0f6a0d9 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -6,34 +6,34 @@
 #
 aiodns==4.0.0
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/runtime-deps.in
+    #   -r lint.in
+    #   -r runtime-deps.in
 aiohappyeyeballs==2.6.1
-    # via -r requirements/runtime-deps.in
+    # via -r runtime-deps.in
 aiohttp-theme==0.1.7
-    # via -r requirements/doc.in
+    # via -r doc.in
 aiosignal==1.4.0
-    # via -r requirements/runtime-deps.in
+    # via -r runtime-deps.in
 alabaster==1.0.0
     # via sphinx
 annotated-types==0.7.0
     # via pydantic
 async-timeout==5.0.1 ; python_version < "3.11"
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   valkey
 babel==2.18.0
     # via sphinx
 backports-zstd==1.3.0 ; platform_python_implementation == "CPython" and python_version < "3.14"
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/runtime-deps.in
+    #   -r lint.in
+    #   -r runtime-deps.in
 blockbuster==1.5.26
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 brotli==1.2.0 ; platform_python_implementation == "CPython"
-    # via -r requirements/runtime-deps.in
+    # via -r runtime-deps.in
 build==1.4.0
     # via pip-tools
 certifi==2026.1.4
@@ -55,7 +55,7 @@ click==8.3.1
     #   wait-for-it
 coverage==7.13.2
     # via
-    #   -r requirements/test-common.in
+    #   -r test-common.in
     #   pytest-cov
 cryptography==46.0.3
     # via trustme
@@ -73,14 +73,14 @@ forbiddenfruit==0.1.4
     # via blockbuster
 freezegun==1.5.5
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 frozenlist==1.8.0
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   aiosignal
 gunicorn==24.1.1
-    # via -r requirements/base.in
+    # via -r base.in
 identify==2.6.16
     # via pre-commit
 idna==3.7
@@ -94,8 +94,8 @@ iniconfig==2.3.0
     # via pytest
 isal==1.7.2 ; python_version < "3.14"
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 jinja2==3.1.6
     # via
     #   sphinx
@@ -110,12 +110,12 @@ mdurl==0.1.2
     # via markdown-it-py
 multidict==6.7.1
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   yarl
 mypy==1.19.1 ; implementation_name == "cpython"
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 mypy-extensions==1.1.0
     # via mypy
 nodeenv==1.10.0
@@ -130,9 +130,9 @@ packaging==26.0
 pathspec==1.0.4
     # via mypy
 pip-tools==7.5.2
-    # via -r requirements/dev.in
+    # via -r dev.in
 pkgconfig==1.5.5
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 platformdirs==4.5.1
     # via virtualenv
 pluggy==1.6.0
@@ -140,15 +140,15 @@ pluggy==1.6.0
     #   pytest
     #   pytest-cov
 pre-commit==4.5.1
-    # via -r requirements/lint.in
+    # via -r lint.in
 propcache==0.4.1
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   yarl
 proxy-py==2.4.10
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 pycares==5.0.1
     # via aiodns
 pycparser==3.0
@@ -168,30 +168,30 @@ pyproject-hooks==1.2.0
     #   pip-tools
 pytest==9.0.2
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
     #   pytest-codspeed
     #   pytest-cov
     #   pytest-mock
     #   pytest-xdist
 pytest-codspeed==4.2.0
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 pytest-cov==7.0.0
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 pytest-mock==3.15.1
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 pytest-xdist==3.8.0
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 pyyaml==6.0.3
     # via pre-commit
 requests==2.32.5
@@ -199,16 +199,16 @@ requests==2.32.5
 rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 six==1.17.0
     # via python-dateutil
 slotscheck==0.19.1
-    # via -r requirements/lint.in
+    # via -r lint.in
 snowballstemmer==3.0.1
     # via sphinx
 sphinx==8.1.3
     # via
-    #   -r requirements/doc.in
+    #   -r doc.in
     #   sphinxcontrib-towncrier
 sphinxcontrib-applehelp==2.0.0
     # via sphinx
@@ -223,7 +223,7 @@ sphinxcontrib-qthelp==2.0.0
 sphinxcontrib-serializinghtml==2.0.0
     # via sphinx
 sphinxcontrib-towncrier==0.5.0a0
-    # via -r requirements/doc.in
+    # via -r doc.in
 tomli==2.3.0
     # via
     #   build
@@ -236,15 +236,15 @@ tomli==2.3.0
     #   towncrier
 towncrier==25.8.0
     # via
-    #   -r requirements/doc.in
+    #   -r doc.in
     #   sphinxcontrib-towncrier
 trustme==1.2.1 ; platform_machine != "i686"
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 typing-extensions==4.15.0 ; python_version < "3.13"
     # via
-    #   -r requirements/runtime-deps.in
+    #   -r runtime-deps.in
     #   aiosignal
     #   cryptography
     #   exceptiongroup
@@ -261,25 +261,25 @@ urllib3==2.6.3
     # via requests
 uvloop==0.21.0 ; platform_system != "Windows" and implementation_name == "cpython"
     # via
-    #   -r requirements/base.in
-    #   -r requirements/lint.in
+    #   -r base.in
+    #   -r lint.in
 valkey==6.1.1
-    # via -r requirements/lint.in
+    # via -r lint.in
 virtualenv==20.36.1
     # via pre-commit
 wait-for-it==2.3.0
-    # via -r requirements/test-common.in
+    # via -r test-common.in
 wheel==0.46.3
     # via pip-tools
 yarl==1.22.0
-    # via -r requirements/runtime-deps.in
+    # via -r runtime-deps.in
 zlib-ng==1.0.0
     # via
-    #   -r requirements/lint.in
-    #   -r requirements/test-common.in
+    #   -r lint.in
+    #   -r test-common.in
 
 # The following packages are considered to be unsafe in a requirements file:
-pip==25.3
+pip==26.0
     # via pip-tools
 setuptools==80.10.2
     # via pip-tools

From dd433bb6eb50adc3bbae569ae9754b69f9e4f2fb Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 3 Feb 2026 01:15:49 +0000
Subject: [PATCH 2/4] Bump gunicorn from 24.1.1 to 25.0.0 (#12014)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 24.1.1 to
25.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/benoitc/gunicorn/releases">gunicorn's
releases</a>.</em></p>
<blockquote>
<h2>Gunicorn 25.0.0</h2>
<h2>New Features</h2>
<ul>
<li>
<p><strong>Dirty Arbiters</strong>: Separate process pool for executing
long-running, blocking
operations (AI model loading, heavy computation) without blocking HTTP
workers
([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3460">#3460</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3460">benoitc/gunicorn#3460</a>))</p>
<ul>
<li>Inspired by Erlang's dirty schedulers</li>
<li>Asyncio-based with Unix socket IPC</li>
<li>Stateful workers that persist loaded resources</li>
<li>New settings: <code>--dirty-app</code>,
<code>--dirty-workers</code>, <code>--dirty-timeout</code>,
<code>--dirty-threads</code>, <code>--dirty-graceful-timeout</code></li>
<li>Lifecycle hooks: <code>on_dirty_starting</code>,
<code>dirty_post_fork</code>,
<code>dirty_worker_init</code>, <code>dirty_worker_exit</code></li>
</ul>
</li>
<li>
<p><strong>Per-App Worker Allocation for Dirty Arbiters</strong>:
Control how many dirty workers
load each app for memory optimization with heavy models
([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3473">#3473</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3473">benoitc/gunicorn#3473</a>))</p>
<ul>
<li>Set <code>workers</code> class attribute on DirtyApp (e.g.,
<code>workers = 2</code>)</li>
<li>Or use config format <code>module:class:N</code> (e.g.,
<code>myapp:HeavyModel:2</code>)</li>
<li>Requests automatically routed to workers with the target app</li>
<li>New exception <code>DirtyNoWorkersAvailableError</code> for graceful
error handling</li>
<li>Example: 8 workers × 10GB model = 80GB → with
<code>workers=2</code>: 20GB (75% savings)</li>
</ul>
</li>
<li>
<p><strong>HTTP/2 Support (Beta)</strong>: Native HTTP/2 (RFC 7540)
support for improved performance
with modern clients ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3468">#3468</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3468">benoitc/gunicorn#3468</a>))</p>
<ul>
<li>Multiplexed streams over a single connection</li>
<li>Header compression (HPACK)</li>
<li>Flow control and stream prioritization</li>
<li>Works with gthread, gevent, and ASGI workers</li>
<li>New settings: <code>--http-protocols</code>,
<code>--http2-max-concurrent-streams</code>,
<code>--http2-initial-window-size</code>,
<code>--http2-max-frame-size</code>,
<code>--http2-max-header-list-size</code></li>
<li>Requires SSL/TLS and h2 library: <code>pip install
gunicorn[http2]</code></li>
<li>New example: <code>examples/http2_gevent/</code> with Docker and
tests</li>
</ul>
</li>
<li>
<p><strong>HTTP 103 Early Hints</strong>: Support for RFC 8297 Early
Hints to enable browsers to
preload resources before the final response
([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3468">#3468</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3468">benoitc/gunicorn#3468</a>))</p>
<ul>
<li>WSGI:
<code>environ['wsgi.early_hints'](https://github.com/benoitc/gunicorn/blob/HEAD/headers)</code>
callback</li>
<li>ASGI: <code>http.response.informational</code> message type</li>
<li>Works with both HTTP/1.1 and HTTP/2</li>
</ul>
</li>
<li>
<p><strong>uWSGI Protocol for ASGI Worker</strong>: The ASGI worker now
supports receiving requests
via the uWSGI binary protocol from nginx
([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3467">#3467</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3467">benoitc/gunicorn#3467</a>))</p>
</li>
</ul>
<h2>Bug Fixes</h2>
<ul>
<li>Fix HTTP/2 ALPN negotiation for gevent and eventlet workers when
<code>do_handshake_on_connect</code> is False (the default). The TLS
handshake is now
explicitly performed before checking
<code>selected_alpn_protocol()</code>.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/benoitc/gunicorn/commit/617a85ea91a439735b47d991dfbbe706dc2beb0b"><code>617a85e</code></a>
docs: update 25.0.0 release date to 2026-02-01</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/ee933f2e3092557dfe36074aa98f84bd6081622e"><code>ee933f2</code></a>
fix(asgi): quick shutdown on SIGINT/SIGQUIT, graceful on SIGTERM</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/98ef198baa98a359131aa301a44519754c161575"><code>98ef198</code></a>
docs: update security policy for maintained versions 24.1.1 and
25.0.0</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/911e333b4e18ce0cf4c9a4739f96f056153202c6"><code>911e333</code></a>
chore: replace RST with markdown, remove docs-lint and readthedocs
config</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/7ff671bca3b1995b00e0f9703444abf57fb45842"><code>7ff671b</code></a>
chore: replace README.rst with README.md, remove
modernization-plan.md</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/d5ab5dc6c1c117b71a21c354f18e760c320157c1"><code>d5ab5dc</code></a>
Merge pull request <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3473">#3473</a>
from benoitc/feature/per-app-worker-allocation</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/d563a7e436267396b063a04ad76f4a326e6bba4e"><code>d563a7e</code></a>
chore: bump version to 25.0.0</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/86264ef90001f7d92a4dae1b19c832ab87156230"><code>86264ef</code></a>
docs: add per-app worker allocation to 25.0.0 changelog</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/c4fe116d71f55b35bf0865fd9cd806e2f235c746"><code>c4fe116</code></a>
docs: add per-app worker allocation documentation</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/1af599769f398dbeadbd5f83dabeab79a5d2a37d"><code>1af5997</code></a>
docs: regenerate settings.md</li>
<li>Additional commits viewable in <a
href="https://github.com/benoitc/gunicorn/compare/24.1.1...25.0.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gunicorn&package-manager=pip&previous-version=24.1.1&new-version=25.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/base-ft.txt     |   2 +-
 requirements/base.txt        |   2 +-
 requirements/constraints.txt | 112 +++++++++++++++++------------------
 requirements/dev.txt         | 106 ++++++++++++++++-----------------
 requirements/test-ft.txt     |   2 +-
 requirements/test.txt        |   2 +-
 6 files changed, 113 insertions(+), 113 deletions(-)

diff --git a/requirements/base-ft.txt b/requirements/base-ft.txt
index 6f1fa115ed7..4c982ba8758 100644
--- a/requirements/base-ft.txt
+++ b/requirements/base-ft.txt
@@ -22,7 +22,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==24.1.1
+gunicorn==25.0.1
     # via -r requirements/base-ft.in
 idna==3.7
     # via yarl
diff --git a/requirements/base.txt b/requirements/base.txt
index c0138159c20..27b181c9799 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -22,7 +22,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==24.1.1
+gunicorn==25.0.1
     # via -r requirements/base.in
 idna==3.7
     # via yarl
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index eacfe7691b0..cdc8bcc0a73 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -6,34 +6,34 @@
 #
 aiodns==4.0.0
     # via
-    #   -r lint.in
-    #   -r runtime-deps.in
+    #   -r requirements/lint.in
+    #   -r requirements/runtime-deps.in
 aiohappyeyeballs==2.6.1
-    # via -r runtime-deps.in
+    # via -r requirements/runtime-deps.in
 aiohttp-theme==0.1.7
-    # via -r doc.in
+    # via -r requirements/doc.in
 aiosignal==1.4.0
-    # via -r runtime-deps.in
+    # via -r requirements/runtime-deps.in
 alabaster==1.0.0
     # via sphinx
 annotated-types==0.7.0
     # via pydantic
 async-timeout==5.0.1 ; python_version < "3.11"
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   valkey
 babel==2.18.0
     # via sphinx
 backports-zstd==1.3.0 ; implementation_name == "cpython"
     # via
-    #   -r lint.in
-    #   -r runtime-deps.in
+    #   -r requirements/lint.in
+    #   -r requirements/runtime-deps.in
 blockbuster==1.5.26
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 brotli==1.2.0 ; platform_python_implementation == "CPython"
-    # via -r runtime-deps.in
+    # via -r requirements/runtime-deps.in
 build==1.4.0
     # via pip-tools
 certifi==2026.1.4
@@ -55,12 +55,12 @@ click==8.3.1
     #   wait-for-it
 coverage==7.13.2
     # via
-    #   -r test-common.in
+    #   -r requirements/test-common.in
     #   pytest-cov
 cryptography==46.0.3
     # via trustme
 cython==3.2.4
-    # via -r cython.in
+    # via -r requirements/cython.in
 distlib==0.4.0
     # via virtualenv
 docutils==0.21.2
@@ -75,14 +75,14 @@ forbiddenfruit==0.1.4
     # via blockbuster
 freezegun==1.5.5
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 frozenlist==1.8.0
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==24.1.1
-    # via -r base.in
+gunicorn==25.0.1
+    # via -r requirements/base.in
 identify==2.6.16
     # via pre-commit
 idna==3.7
@@ -96,8 +96,8 @@ iniconfig==2.3.0
     # via pytest
 isal==1.7.2 ; python_version < "3.14"
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 jinja2==3.1.6
     # via
     #   sphinx
@@ -112,13 +112,13 @@ mdurl==0.1.2
     # via markdown-it-py
 multidict==6.7.1
     # via
-    #   -r multidict.in
-    #   -r runtime-deps.in
+    #   -r requirements/multidict.in
+    #   -r requirements/runtime-deps.in
     #   yarl
 mypy==1.19.1 ; implementation_name == "cpython"
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 mypy-extensions==1.1.0
     # via mypy
 nodeenv==1.10.0
@@ -133,9 +133,9 @@ packaging==26.0
 pathspec==1.0.4
     # via mypy
 pip-tools==7.5.2
-    # via -r dev.in
+    # via -r requirements/dev.in
 pkgconfig==1.5.5
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 platformdirs==4.5.1
     # via virtualenv
 pluggy==1.6.0
@@ -143,15 +143,15 @@ pluggy==1.6.0
     #   pytest
     #   pytest-cov
 pre-commit==4.5.1
-    # via -r lint.in
+    # via -r requirements/lint.in
 propcache==0.4.1
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   yarl
 proxy-py==2.4.10
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 pycares==5.0.1
     # via aiodns
 pycparser==3.0
@@ -173,30 +173,30 @@ pyproject-hooks==1.2.0
     #   pip-tools
 pytest==9.0.2
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
     #   pytest-codspeed
     #   pytest-cov
     #   pytest-mock
     #   pytest-xdist
 pytest-codspeed==4.2.0
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 pytest-cov==7.0.0
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 pytest-mock==3.15.1
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 pytest-xdist==3.8.0
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 pyyaml==6.0.3
     # via pre-commit
 requests==2.32.5
@@ -206,16 +206,16 @@ requests==2.32.5
 rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 six==1.17.0
     # via python-dateutil
 slotscheck==0.19.1
-    # via -r lint.in
+    # via -r requirements/lint.in
 snowballstemmer==3.0.1
     # via sphinx
 sphinx==8.1.3
     # via
-    #   -r doc.in
+    #   -r requirements/doc.in
     #   sphinxcontrib-spelling
     #   sphinxcontrib-towncrier
 sphinxcontrib-applehelp==2.0.0
@@ -231,9 +231,9 @@ sphinxcontrib-qthelp==2.0.0
 sphinxcontrib-serializinghtml==2.0.0
     # via sphinx
 sphinxcontrib-spelling==8.0.2 ; platform_system != "Windows"
-    # via -r doc-spelling.in
+    # via -r requirements/doc-spelling.in
 sphinxcontrib-towncrier==0.5.0a0
-    # via -r doc.in
+    # via -r requirements/doc.in
 tomli==2.3.0
     # via
     #   build
@@ -246,15 +246,15 @@ tomli==2.3.0
     #   towncrier
 towncrier==25.8.0
     # via
-    #   -r doc.in
+    #   -r requirements/doc.in
     #   sphinxcontrib-towncrier
 trustme==1.2.1 ; platform_machine != "i686"
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 typing-extensions==4.15.0 ; python_version < "3.13"
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   aiosignal
     #   cryptography
     #   exceptiongroup
@@ -271,22 +271,22 @@ urllib3==2.6.3
     # via requests
 uvloop==0.21.0 ; platform_system != "Windows"
     # via
-    #   -r base.in
-    #   -r lint.in
+    #   -r requirements/base.in
+    #   -r requirements/lint.in
 valkey==6.1.1
-    # via -r lint.in
+    # via -r requirements/lint.in
 virtualenv==20.36.1
     # via pre-commit
 wait-for-it==2.3.0
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 wheel==0.46.3
     # via pip-tools
 yarl==1.22.0
-    # via -r runtime-deps.in
+    # via -r requirements/runtime-deps.in
 zlib-ng==1.0.0
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 
 # The following packages are considered to be unsafe in a requirements file:
 pip==26.0
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 07fe0f6a0d9..d7803282fb7 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -6,34 +6,34 @@
 #
 aiodns==4.0.0
     # via
-    #   -r lint.in
-    #   -r runtime-deps.in
+    #   -r requirements/lint.in
+    #   -r requirements/runtime-deps.in
 aiohappyeyeballs==2.6.1
-    # via -r runtime-deps.in
+    # via -r requirements/runtime-deps.in
 aiohttp-theme==0.1.7
-    # via -r doc.in
+    # via -r requirements/doc.in
 aiosignal==1.4.0
-    # via -r runtime-deps.in
+    # via -r requirements/runtime-deps.in
 alabaster==1.0.0
     # via sphinx
 annotated-types==0.7.0
     # via pydantic
 async-timeout==5.0.1 ; python_version < "3.11"
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   valkey
 babel==2.18.0
     # via sphinx
 backports-zstd==1.3.0 ; platform_python_implementation == "CPython" and python_version < "3.14"
     # via
-    #   -r lint.in
-    #   -r runtime-deps.in
+    #   -r requirements/lint.in
+    #   -r requirements/runtime-deps.in
 blockbuster==1.5.26
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 brotli==1.2.0 ; platform_python_implementation == "CPython"
-    # via -r runtime-deps.in
+    # via -r requirements/runtime-deps.in
 build==1.4.0
     # via pip-tools
 certifi==2026.1.4
@@ -55,7 +55,7 @@ click==8.3.1
     #   wait-for-it
 coverage==7.13.2
     # via
-    #   -r test-common.in
+    #   -r requirements/test-common.in
     #   pytest-cov
 cryptography==46.0.3
     # via trustme
@@ -73,14 +73,14 @@ forbiddenfruit==0.1.4
     # via blockbuster
 freezegun==1.5.5
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 frozenlist==1.8.0
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==24.1.1
-    # via -r base.in
+gunicorn==25.0.1
+    # via -r requirements/base.in
 identify==2.6.16
     # via pre-commit
 idna==3.7
@@ -94,8 +94,8 @@ iniconfig==2.3.0
     # via pytest
 isal==1.7.2 ; python_version < "3.14"
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 jinja2==3.1.6
     # via
     #   sphinx
@@ -110,12 +110,12 @@ mdurl==0.1.2
     # via markdown-it-py
 multidict==6.7.1
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   yarl
 mypy==1.19.1 ; implementation_name == "cpython"
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 mypy-extensions==1.1.0
     # via mypy
 nodeenv==1.10.0
@@ -130,9 +130,9 @@ packaging==26.0
 pathspec==1.0.4
     # via mypy
 pip-tools==7.5.2
-    # via -r dev.in
+    # via -r requirements/dev.in
 pkgconfig==1.5.5
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 platformdirs==4.5.1
     # via virtualenv
 pluggy==1.6.0
@@ -140,15 +140,15 @@ pluggy==1.6.0
     #   pytest
     #   pytest-cov
 pre-commit==4.5.1
-    # via -r lint.in
+    # via -r requirements/lint.in
 propcache==0.4.1
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   yarl
 proxy-py==2.4.10
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 pycares==5.0.1
     # via aiodns
 pycparser==3.0
@@ -168,30 +168,30 @@ pyproject-hooks==1.2.0
     #   pip-tools
 pytest==9.0.2
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
     #   pytest-codspeed
     #   pytest-cov
     #   pytest-mock
     #   pytest-xdist
 pytest-codspeed==4.2.0
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 pytest-cov==7.0.0
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 pytest-mock==3.15.1
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 pytest-xdist==3.8.0
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 pyyaml==6.0.3
     # via pre-commit
 requests==2.32.5
@@ -199,16 +199,16 @@ requests==2.32.5
 rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 six==1.17.0
     # via python-dateutil
 slotscheck==0.19.1
-    # via -r lint.in
+    # via -r requirements/lint.in
 snowballstemmer==3.0.1
     # via sphinx
 sphinx==8.1.3
     # via
-    #   -r doc.in
+    #   -r requirements/doc.in
     #   sphinxcontrib-towncrier
 sphinxcontrib-applehelp==2.0.0
     # via sphinx
@@ -223,7 +223,7 @@ sphinxcontrib-qthelp==2.0.0
 sphinxcontrib-serializinghtml==2.0.0
     # via sphinx
 sphinxcontrib-towncrier==0.5.0a0
-    # via -r doc.in
+    # via -r requirements/doc.in
 tomli==2.3.0
     # via
     #   build
@@ -236,15 +236,15 @@ tomli==2.3.0
     #   towncrier
 towncrier==25.8.0
     # via
-    #   -r doc.in
+    #   -r requirements/doc.in
     #   sphinxcontrib-towncrier
 trustme==1.2.1 ; platform_machine != "i686"
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 typing-extensions==4.15.0 ; python_version < "3.13"
     # via
-    #   -r runtime-deps.in
+    #   -r requirements/runtime-deps.in
     #   aiosignal
     #   cryptography
     #   exceptiongroup
@@ -261,22 +261,22 @@ urllib3==2.6.3
     # via requests
 uvloop==0.21.0 ; platform_system != "Windows" and implementation_name == "cpython"
     # via
-    #   -r base.in
-    #   -r lint.in
+    #   -r requirements/base.in
+    #   -r requirements/lint.in
 valkey==6.1.1
-    # via -r lint.in
+    # via -r requirements/lint.in
 virtualenv==20.36.1
     # via pre-commit
 wait-for-it==2.3.0
-    # via -r test-common.in
+    # via -r requirements/test-common.in
 wheel==0.46.3
     # via pip-tools
 yarl==1.22.0
-    # via -r runtime-deps.in
+    # via -r requirements/runtime-deps.in
 zlib-ng==1.0.0
     # via
-    #   -r lint.in
-    #   -r test-common.in
+    #   -r requirements/lint.in
+    #   -r requirements/test-common.in
 
 # The following packages are considered to be unsafe in a requirements file:
 pip==26.0
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index ad0fbc95c52..b41dc45c6f2 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -45,7 +45,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==24.1.1
+gunicorn==25.0.1
     # via -r requirements/base-ft.in
 idna==3.7
     # via
diff --git a/requirements/test.txt b/requirements/test.txt
index a85c93e6086..48300c2ce7f 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -45,7 +45,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==24.1.1
+gunicorn==25.0.1
     # via -r requirements/base.in
 idna==3.7
     # via

From da575390666fe76894efa03033cbb6e3af49c42e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 3 Feb 2026 01:35:47 +0000
Subject: [PATCH 3/4] Bump rich from 14.3.1 to 14.3.2 (#12016)

Bumps [rich](https://github.com/Textualize/rich) from 14.3.1 to 14.3.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/Textualize/rich/releases">rich's
releases</a>.</em></p>
<blockquote>
<h2>The ZWJy release</h2>
<p>A fix for <code>cell_len</code> edge cases</p>
<h2>[14.3.2] - 2026-02-01</h2>
<h3>Fixed</h3>
<ul>
<li>Fixed solo ZWJ crash <a
href="https://redirect.github.com/Textualize/rich/pull/3953">Textualize/rich#3953</a></li>
<li>Fixed control codes reporting width of 1 <a
href="https://redirect.github.com/Textualize/rich/pull/3953">Textualize/rich#3953</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/Textualize/rich/blob/master/CHANGELOG.md">rich's
changelog</a>.</em></p>
<blockquote>
<h2>[14.3.2] - 2026-02-01</h2>
<h3>Fixed</h3>
<ul>
<li>Fixed solo ZWJ crash <a
href="https://redirect.github.com/Textualize/rich/pull/3953">Textualize/rich#3953</a></li>
<li>Fixed control codes reporting width of 1 <a
href="https://redirect.github.com/Textualize/rich/pull/3953">Textualize/rich#3953</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/Textualize/rich/commit/0752ff047295131d98f24284e1d949300cd6f4c1"><code>0752ff0</code></a>
Merge pull request <a
href="https://redirect.github.com/Textualize/rich/issues/3953">#3953</a>
from Textualize/zwj-fix</li>
<li><a
href="https://github.com/Textualize/rich/commit/54ae0cfbb8d43ccc8f56bf57019b9a22c252eefa"><code>54ae0cf</code></a>
simplify</li>
<li><a
href="https://github.com/Textualize/rich/commit/07edb85f7e09ae76f0a0c9ac4c2059803ce8eb9a"><code>07edb85</code></a>
refine</li>
<li><a
href="https://github.com/Textualize/rich/commit/31930ddc842d9e1cd224327d5f6c22eff4a87f82"><code>31930dd</code></a>
fix test</li>
<li><a
href="https://github.com/Textualize/rich/commit/454fcfc92c66556f9538d420b5bd3ba95b1f57b7"><code>454fcfc</code></a>
stupid comment</li>
<li><a
href="https://github.com/Textualize/rich/commit/13f87a4007f629c00b491286034751d53ae9d63c"><code>13f87a4</code></a>
Fix ZWJ and edge cases</li>
<li><a
href="https://github.com/Textualize/rich/commit/1d402e0c59f8765e420a5a4440eb2fca7465d1ae"><code>1d402e0</code></a>
fix dates</li>
<li>See full diff in <a
href="https://github.com/Textualize/rich/compare/v14.3.1...v14.3.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rich&package-manager=pip&previous-version=14.3.1&new-version=14.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 requirements/test-common.txt | 2 +-
 requirements/test-ft.txt     | 2 +-
 requirements/test.txt        | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index cdc8bcc0a73..31dbf894c59 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -203,7 +203,7 @@ requests==2.32.5
     # via
     #   sphinx
     #   sphinxcontrib-spelling
-rich==14.3.1
+rich==14.3.2
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in
diff --git a/requirements/dev.txt b/requirements/dev.txt
index d7803282fb7..156dba6aef7 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -196,7 +196,7 @@ pyyaml==6.0.3
     # via pre-commit
 requests==2.32.5
     # via sphinx
-rich==14.3.1
+rich==14.3.2
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in
diff --git a/requirements/lint.txt b/requirements/lint.txt
index d11ca0720cb..1a70d99bd2a 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -94,7 +94,7 @@ python-on-whales==0.80.0
     # via -r requirements/lint.in
 pyyaml==6.0.3
     # via pre-commit
-rich==14.3.1
+rich==14.3.2
     # via pytest-codspeed
 six==1.17.0
     # via python-dateutil
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index b727efcd998..745cfd305ac 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -85,7 +85,7 @@ python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via -r requirements/test-common.in
-rich==14.3.1
+rich==14.3.2
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index b41dc45c6f2..8530992fc41 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -118,7 +118,7 @@ python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via -r requirements/test-common.in
-rich==14.3.1
+rich==14.3.2
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in
diff --git a/requirements/test.txt b/requirements/test.txt
index 48300c2ce7f..0a2aca59b76 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -118,7 +118,7 @@ python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via -r requirements/test-common.in
-rich==14.3.1
+rich==14.3.2
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in

From df0d897466b723cde92696dfb2887f253671870c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 3 Feb 2026 01:44:53 +0000
Subject: [PATCH 4/4] Bump tomli from 2.3.0 to 2.4.0 (#11956)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [tomli](https://github.com/hukkin/tomli) from 2.3.0 to 2.4.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/hukkin/tomli/blob/master/CHANGELOG.md">tomli's
changelog</a>.</em></p>
<blockquote>
<h2>2.4.0</h2>
<ul>
<li>Added
<ul>
<li>TOML v1.1.0 compatibility</li>
<li>Binary wheels for Windows arm64</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/hukkin/tomli/commit/a678e6fdeffa89bd28e4ecc148b926a4e1bbbc7b"><code>a678e6f</code></a>
Bump version: 2.3.0 → 2.4.0</li>
<li><a
href="https://github.com/hukkin/tomli/commit/b8a1358cd4f3932b910333e0179270093596ce64"><code>b8a1358</code></a>
Tests: remove now needless &quot;TOML
compliance&quot;-&gt;&quot;burntsushi&quot; format conversion</li>
<li><a
href="https://github.com/hukkin/tomli/commit/497937545351e0b4c8afe2299d5ddfb4a7e050cc"><code>4979375</code></a>
Update GitHub actions</li>
<li><a
href="https://github.com/hukkin/tomli/commit/f890dd1719da0e0f4e83cac39218ba2ded61fa94"><code>f890dd1</code></a>
Update pre-commit hooks</li>
<li><a
href="https://github.com/hukkin/tomli/commit/d9c65c3379b8b92dfab52c8c694605b1aea5a65d"><code>d9c65c3</code></a>
Add 2.4.0 change log</li>
<li><a
href="https://github.com/hukkin/tomli/commit/0efe49d88c2d6ee38e3ad21bfcf64249968fe6c4"><code>0efe49d</code></a>
Update README for v2.4.0</li>
<li><a
href="https://github.com/hukkin/tomli/commit/9eb2125ef49071e673d42e383b5221a268665193"><code>9eb2125</code></a>
TOML 1.1: Make seconds optional in Date-Time and Time (<a
href="https://redirect.github.com/hukkin/tomli/issues/203">#203</a>)</li>
<li><a
href="https://github.com/hukkin/tomli/commit/12314bde5b89a8bdc32de7403a2a4cf786187bbc"><code>12314bd</code></a>
TOML 1.1: Add \xHH Unicode escape code to basic strings (<a
href="https://redirect.github.com/hukkin/tomli/issues/202">#202</a>)</li>
<li><a
href="https://github.com/hukkin/tomli/commit/2a2aa62f1bc71b89b74d41dd2ab67b5dd24bc129"><code>2a2aa62</code></a>
TOML 1.1: Allow newlines and trailing comma in inline tables (<a
href="https://redirect.github.com/hukkin/tomli/issues/200">#200</a>)</li>
<li><a
href="https://github.com/hukkin/tomli/commit/38297f82cd0ef067f1afd2ffb8dfa73b65c398da"><code>38297f8</code></a>
Xfail on tests for TOML 1.1 features not yet supported</li>
<li>Additional commits viewable in <a
href="https://github.com/hukkin/tomli/compare/2.3.0...2.4.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=tomli&package-manager=pip&previous-version=2.3.0&new-version=2.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt  | 2 +-
 requirements/dev.txt          | 2 +-
 requirements/doc-spelling.txt | 2 +-
 requirements/doc.txt          | 2 +-
 requirements/lint.txt         | 2 +-
 requirements/test-common.txt  | 2 +-
 requirements/test-ft.txt      | 2 +-
 requirements/test.txt         | 2 +-
 8 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 31dbf894c59..e72bff088ee 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -234,7 +234,7 @@ sphinxcontrib-spelling==8.0.2 ; platform_system != "Windows"
     # via -r requirements/doc-spelling.in
 sphinxcontrib-towncrier==0.5.0a0
     # via -r requirements/doc.in
-tomli==2.3.0
+tomli==2.4.0
     # via
     #   build
     #   coverage
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 156dba6aef7..92aad1607c2 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -224,7 +224,7 @@ sphinxcontrib-serializinghtml==2.0.0
     # via sphinx
 sphinxcontrib-towncrier==0.5.0a0
     # via -r requirements/doc.in
-tomli==2.3.0
+tomli==2.4.0
     # via
     #   build
     #   coverage
diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt
index e652fbbd2fa..680a00c3a71 100644
--- a/requirements/doc-spelling.txt
+++ b/requirements/doc-spelling.txt
@@ -61,7 +61,7 @@ sphinxcontrib-spelling==8.0.2 ; platform_system != "Windows"
     # via -r requirements/doc-spelling.in
 sphinxcontrib-towncrier==0.5.0a0
     # via -r requirements/doc.in
-tomli==2.3.0
+tomli==2.4.0
     # via
     #   sphinx
     #   towncrier
diff --git a/requirements/doc.txt b/requirements/doc.txt
index 6beea860a6a..bfafe7a6997 100644
--- a/requirements/doc.txt
+++ b/requirements/doc.txt
@@ -54,7 +54,7 @@ sphinxcontrib-serializinghtml==2.0.0
     # via sphinx
 sphinxcontrib-towncrier==0.5.0a0
     # via -r requirements/doc.in
-tomli==2.3.0
+tomli==2.4.0
     # via
     #   sphinx
     #   towncrier
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 1a70d99bd2a..c909c180cb7 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -100,7 +100,7 @@ six==1.17.0
     # via python-dateutil
 slotscheck==0.19.1
     # via -r requirements/lint.in
-tomli==2.3.0
+tomli==2.4.0
     # via
     #   mypy
     #   pytest
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index 745cfd305ac..5f512265e1a 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -91,7 +91,7 @@ setuptools-git==1.2
     # via -r requirements/test-common.in
 six==1.17.0
     # via python-dateutil
-tomli==2.3.0
+tomli==2.4.0
     # via
     #   coverage
     #   mypy
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 8530992fc41..1975875ff06 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -124,7 +124,7 @@ setuptools-git==1.2
     # via -r requirements/test-common.in
 six==1.17.0
     # via python-dateutil
-tomli==2.3.0
+tomli==2.4.0
     # via
     #   coverage
     #   mypy
diff --git a/requirements/test.txt b/requirements/test.txt
index 0a2aca59b76..f836dc7619f 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -124,7 +124,7 @@ setuptools-git==1.2
     # via -r requirements/test-common.in
 six==1.17.0
     # via python-dateutil
-tomli==2.3.0
+tomli==2.4.0
     # via
     #   coverage
     #   mypy