chore(deps): bump the python group with 4 updates

[dependabot]

Bumps the python group with 4 updates: boto3, ruff, botocore and s3transfer.

Updates boto3 from 1.43.14 to 1.43.18

Commits

• 1751374 Merge branch 'release-1.43.18'
• 1bcb376 Bumping version to 1.43.18
• 6bb2278 Add changelog entries from botocore
• 1f595ae Add a changelog for retries update (#4791)
• 8083432 Merge branch 'release-1.43.17'
• a6311df Merge branch 'release-1.43.17' into develop
• 22c6474 Bumping version to 1.43.17
• 11f25f2 Add changelog entries from botocore
• 045d573 Update copy test (#4790)
• 6ffdfa1 Merge branch 'release-1.43.16'
• Additional commits viewable in compare view

Updates ruff from 0.15.14 to 0.15.15

Release notes

Sourced from ruff's releases.

0.15.15

Release Notes

Released on 2026-05-28.

Preview features

• Fix Markdown closing fence handling (#25310)
• [pyflakes] Report duplicate imports in typing.TYPE_CHECKING block (F811) (#22560)

Bug fixes

• [pyflakes] Treat function-scope bare annotations as locals per PEP 526 (F821) (#21540)

Performance

• Avoid redundant TokenValue drops in the lexer (#25300)
• Reduce memory usage by dropping token-excess capacity and improve performance by approximating the initial tokens Vec size (#25354)
• Use ThinVec in AST to shrink Stmt (#25361)

Documentation

• Fix line-length example for --config option (#25389)
• [flake8-comprehensions] Document RecursionError edge case in __len__ (C416) (#25286)
• [mccabe] Improve example (C901) (#25287)
• [pyupgrade] Clarify fix safety docs (UP007, UP045) (#25288)
• [refurb] Document FURB192 exception change for empty sequences (#25317)
• [ruff] Document false negative for user-defined types (RUF013) (#25289)

Formatter

• Fix formatting of lambdas nested within f-strings (#25398)

Server

• Return code action for codeAction/resolve requests that contain no or no valid URL (#25365)

Other changes

• Expand semantic syntax errors for invalid walruses (#25415)

Contributors

• @​chirizxc
• @​ntBre
• @​adityasingh2400
• @​charliermarsh
• @​fallintoplace
• @​martin-schlossarek
• @​MichaReiser

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.15

Released on 2026-05-28.

Preview features

• Fix Markdown closing fence handling (#25310)
• [pyflakes] Report duplicate imports in typing.TYPE_CHECKING block (F811) (#22560)

Bug fixes

• [pyflakes] Treat function-scope bare annotations as locals per PEP 526 (F821) (#21540)

Performance

• Avoid redundant TokenValue drops in the lexer (#25300)
• Reduce memory usage by dropping token-excess capacity and improve performance by approximating the initial tokens Vec size (#25354)
• Use ThinVec in AST to shrink Stmt (#25361)

Documentation

• Fix line-length example for --config option (#25389)
• [flake8-comprehensions] Document RecursionError edge case in __len__ (C416) (#25286)
• [mccabe] Improve example (C901) (#25287)
• [pyupgrade] Clarify fix safety docs (UP007, UP045) (#25288)
• [refurb] Document FURB192 exception change for empty sequences (#25317)
• [ruff] Document false negative for user-defined types (RUF013) (#25289)

Formatter

• Fix formatting of lambdas nested within f-strings (#25398)

Server

• Return code action for codeAction/resolve requests that contain no or no valid URL (#25365)

Other changes

• Expand semantic syntax errors for invalid walruses (#25415)

Contributors

• @​chirizxc
• @​ntBre
• @​adityasingh2400
• @​charliermarsh
• @​fallintoplace
• @​martin-schlossarek
• @​MichaReiser
• @​Ruchir28

Commits

• db5aa0a Bump 0.15.15 (#25431)
• 366fe21 [ty] Improve diagnostics for syntax errors in forward annotations (#25158)
• e2e1e64 [ty] Remove excess capacity from more Salsa cached collections (#25411)
• 1bd77e1 [ty] Use diagnostic message as tie breaker when sorting (#25424)
• 7e1bc1e Add agent skills for working on ty (#25422)
• 574e107 Expand semantic syntax errors for invalid walruses (#25415)
• 4a7ca06 [ty] Display docs for matching parameter when hovering over the name of an ar...
• 5432709 Refine a few agents instructions (#25423)
• 3cb09eb [ty] Support typing.TypeForm (#25334)
• c8cd59f [ty] Infer class attributes assigned by metaclass initialization (#25342)
• Additional commits viewable in compare view

Updates botocore from 1.43.14 to 1.43.18

Commits

• 96246a7 Merge branch 'release-1.43.18'
• e4a5e78 Bumping version to 1.43.18
• 61ab7a4 Update endpoints model
• e946091 Update to latest models
• 4465706 Merge customizations for QuickSight
• acfbbcd Add a changelog for retries update (#3717)
• 364f281 Merge branch 'release-1.43.17'
• f6fc538 Merge branch 'release-1.43.17' into develop
• 5f339c5 Bumping version to 1.43.17
• fe24c47 Update endpoints model
• Additional commits viewable in compare view

Updates s3transfer from 0.17.0 to 0.18.0

Changelog

Sourced from s3transfer's changelog.

0.18.0

• feature:Copy: By default, preserve source object metadata during multipart copies to match single CopyObject behavior.

0.17.1

• enhancement:s3: Skip the HEAD request during S3 downloads when the client is configured with response_checksum_validation='when_required', reducing latency for small-object transfers. The HEAD request remains in place by default to enable full-object checksum validation.

Commits

• 7ae4c0e Merge branch 'release-0.18.0'
• aa41297 Bumping version to 0.18.0
• 69136db Preserve source object metadata for multipart copies (#392)
• 5a988c8 Merge branch 'release-0.17.1'
• 700d5b1 Merge branch 'release-0.17.1' into develop
• ed80042 Bumping version to 0.17.1
• 6a428fa Eliminate HEAD requests during S3 downloads when opted out of response checks...
• 3aef34e Add CI for Python 3.14t (#391)
• a392251 Bump https://github.com/astral-sh/ruff-pre-commit (#390)
• fb872df Bump pytest from 8.1.1 to 9.0.3 (#388)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions