Bump the all-django-dependencies group across 1 directory with 7 updates

[dependabot]

Updates the requirements on python-dotenv, django, django-tailwind, boto3, black, pre-commit and pylint-django to permit the latest version.
Updates python-dotenv to 1.2.1

Release notes

Sourced from python-dotenv's releases.

v1.2.1

What's Changed

• Support reading .env from FIFOs (Unix) by @​sidharth-sudhir in theskumar/python-dotenv#586
• Update CI to use trusted publishing on PyPI

New Contributors

• @​sidharth-sudhir made their first contribution in theskumar/python-dotenv#586

Full Changelog: theskumar/python-dotenv@v1.2.0...v1.2.1

Changelog

Sourced from python-dotenv's changelog.

[1.2.1] - 2025-10-26

• Move more config to pyproject.toml, removed setup.cfg
• Add support for reading .env from FIFOs (Unix) by [@​sidharth-sudhir] in #586

[1.2.0] - 2025-10-26

• Upgrade build system to use PEP 517 & PEP 518 to use build and pyproject.toml by [@​EpicWink] in #583
• Add support for Python 3.14 by [@​23f3001135] in #579
• Add support for disabling of load_dotenv() using PYTHON_DOTENV_DISABLED env var. by [@​matthewfranglen] in #569

[1.1.1] - 2025-06-24

Fixed

• CLI: Ensure find_dotenv work reliably on python 3.13 by [@​theskumar] in #563
• CLI: revert the use of execvpe on Windows by [@​wrongontheinternet] in #566

[1.1.0] - 2025-03-25

Feature

• Add support for python 3.13
• Enhance dotenv run, switch to execvpe for better resource management and signal handling (#523) by [@​eekstunt]

Fixed

• find_dotenv and load_dotenv now correctly looks up at the current directory when running in debugger or pdb (#553 by [@​randomseed42])

Misc

• Drop support for Python 3.8

[1.0.1] - 2024-01-23

Fixed

• Gracefully handle code which has been imported from a zipfile (#456 by [@​samwyma])
• Allow modules using load_dotenv to be reloaded when launched in a separate thread (#497 by [@​freddyaboulton])
• Fix file not closed after deletion, handle error in the rewrite function (#469 by [@​Qwerty-133])

Misc

• Use pathlib.Path in tests (#466 by [@​eumiro])
• Fix year in release date in changelog.md (#454 by [@​jankislinger])
• Use https in README links (#474 by [@​Nicals])

[1.0.0] - 2023-02-24

Fixed

... (truncated)

Commits

• eaf2a91 Do not remove .coverage file
• 8716196 Bump version: 1.2.0 → 1.2.1
• b87807f Update changelog
• 3af77d3 Support reading .env from FIFOs (Unix) (#586)
• 467ee22 Fix test failures after moving config to pyproject.toml
• 76999e7 Move more config pyproject.toml
• 222ce2c Update to use trusted publisher on pypi
• 8ed4f79 Update docs requirements
• 5bf8822 Bump version: 1.1.1 → 1.2.0
• 1fe11cc upadate changelog
• Additional commits viewable in compare view

Updates django to 6.0

Commits

• 36b5f39 [6.0.x] Bumped version for 6.0 release.
• 4f46d1f [6.0.x] Updated man page for Django 6.0.
• a9f5ca5 [6.0.x] Refs #35859 -- Clarified Tasks ref and topics docs regarding availabl...
• 45f9e0e [6.0.x] Finalized release notes for Django 6.0.
• ac44a55 [6.0.x] Made cosmetic edits to docs/releases/6.0.txt.
• 00575b7 [6.0.x] Updated translations from Transifex.
• 8414487 [6.0.x] Refs #35444 -- Fixed typo in PostgreSQL StringAgg deprecation warning.
• 1f8f36e [6.0.x] Added CVE-2025-13372 and CVE-2025-64460 to security archive.
• 224fc79 [6.0.x] Added stub release notes for 5.2.10.
• 1dbd07a [6.0.x] Fixed CVE-2025-64460 -- Corrected quadratic inner text accumulation i...
• Additional commits viewable in compare view

Updates django-tailwind to 4.4.2

Changelog

Sourced from django-tailwind's changelog.

4.4.2

• Fixes an issue with CSS path configuration.

4.4.1

• Fixes an issue when raw_input is used instead of input.

4.4.0

• Standalone Tailwind CSS binary support via pytailwindcss;
• TAILWIND_USE_STANDALONE_BINARY setting to force standalone binary mode;
• TAILWIND_STANDALONE_BINARY_VERSION setting to control standalone binary version (default: v4.1.16);
• Automatic detection of standalone vs npm-based installations (checks for package.json presence);
• app_template_v4_standalone/ cookiecutter template for standalone binary apps;
• Updates documentation;
• Node.js is now optional when using standalone binary mode;

4.3.0

• Replaces Poetry with UV for dependency management;
• Fixes extract_host_and_port to support standalone port numbers (e.g., python manage.py runserver 55555);
• Updates tox configuration to use dev dependency group;
• Removes Docker instructions from documentation;

4.2.0

• Adds new manage.py tailwind plugin_install command to manage Tailwind CSS plugins;
• Adds optional daisyUI support;

4.1.0

• Adds new dev command that starts Django development server and Tailwind watcher simultaneously;
• Automatically installs Honcho if not available when using dev command;
• Creates Procfile.tailwind for customizable process management;
• Updates documentation with dev command usage;

4.0.0

• Adds support for Tailwind CSS v4+;
• Sets Tailwind CSS v4+ as the default version, with the option to use v3.x via --tailwind-version 3 flag;

3.9.1

• Brings Python 3.10 support back;
• Adds Python 3.13 support;

3.9.0

• Adds --no-package-lock option to python manage.py tailwind install command to optionally skip creating package-lock.json file;

... (truncated)

Commits

• dfb5a00 Releases 4.4.2
• 216c9e9 Merge pull request #244 from synthghost/patch-1
• 2b5a013 Fix settings-based CSS path configuration
• bfd4250 Add Star History section to README
• 4c8ef98 Delete manage.py
• 4b0e428 Releases 4.4.1
• 46fb9a9 Merge pull request #241 from evangeloskp/fix-distlib-import-error
• 34150e8 Fix ImportError by replacing distlib.compat.raw_input with built-in input()
• 91c509a Update CI badge in README.md
• 4ac8150 Releases 4.4.0
• Additional commits viewable in compare view

Updates boto3 to 1.42.19

Commits

• 98bf665 Merge branch 'release-1.42.19'
• a86b3cf Bumping version to 1.42.19
• a96980b Add changelog entries from botocore
• 3a1085f Remove elastictranscoder from documentation (#4686)
• 83130e5 Merge branch 'release-1.42.18'
• 2ad1b19 Merge branch 'release-1.42.18' into develop
• 56a53e6 Bumping version to 1.42.18
• 960d57e Add changelog entries from botocore
• 9a88f84 Merge branch 'release-1.42.17'
• c302093 Merge branch 'release-1.42.17' into develop
• Additional commits viewable in compare view

Updates black to 25.12.0

Release notes

Sourced from black's releases.

25.12.0

Please test out the draft 2026 style in version 26.1a1! This style will be finalized in the January release (26.1.0). Most of the changes in --preview will be in the 2026 stable style, but not all. Please share your feedback!

This release (25.12.0) will still produce the 2025 style.

Highlights

• Black no longer supports running with Python 3.9 (#4842)

Stable style

• Fix bug where comments preceding # fmt: off/# fmt: on blocks were incorrectly removed, particularly affecting Jupytext's # %% [markdown] comments (#4845)
• Fix crash when multiple # fmt: skip comments are used in a multi-part if-clause, on string literals, or on dictionary entries with long lines (#4872)
• Fix possible crash when fmt: directives aren't on the top level (#4856)

Preview style

• Fix fmt: skip skipping the line after instead of the line it's on (#4855)
• Remove unnecessary parentheses from the left-hand side of assignments while preserving magic trailing commas and intentional multiline formatting (#4865)
• Fix fix_fmt_skip_in_one_liners crashing on with statements (#4853)
• Fix fix_fmt_skip_in_one_liners crashing on annotated parameters (#4854)
• Fix new lines being added after imports with # fmt: skip on them (#4894)

Packaging

• Releases now include arm64 Windows binaries and wheels (#4814)

Integrations

• Add output-file input to GitHub Action psf/black to write formatter output to a file for artifact capture and log cleanliness (#4824)

Changelog

Sourced from black's changelog.

25.12.0

Highlights

• Black no longer supports running with Python 3.9 (#4842)

Stable style

• Fix bug where comments preceding # fmt: off/# fmt: on blocks were incorrectly removed, particularly affecting Jupytext's # %% [markdown] comments (#4845)
• Fix crash when multiple # fmt: skip comments are used in a multi-part if-clause, on string literals, or on dictionary entries with long lines (#4872)
• Fix possible crash when fmt: directives aren't on the top level (#4856)

Preview style

• Fix fmt: skip skipping the line after instead of the line it's on (#4855)
• Remove unnecessary parentheses from the left-hand side of assignments while preserving magic trailing commas and intentional multiline formatting (#4865)
• Fix fix_fmt_skip_in_one_liners crashing on with statements (#4853)
• Fix fix_fmt_skip_in_one_liners crashing on annotated parameters (#4854)
• Fix new lines being added after imports with # fmt: skip on them (#4894)

Packaging

• Releases now include arm64 Windows binaries and wheels (#4814)

Integrations

• Add output-file input to GitHub Action psf/black to write formatter output to a file for artifact capture and log cleanliness (#4824)

25.11.0

Highlights

• Enable base 3.14 support (#4804)
• Add support for the new Python 3.14 t-string syntax introduced by PEP 750 (#4805)

Stable style

• Fix bug where comments between # fmt: off and # fmt: on were reformatted (#4811)
• Comments containing fmt directives now preserve their exact formatting instead of being normalized (#4811)

Preview style

• Move multiline_string_handling from --unstable to --preview (#4760)
• Fix bug where module docstrings would be treated as normal strings if preceded by comments (#4764)

... (truncated)

Commits

• 782e560 Pin actions/checkout@v5.0.0 (#4895)
• f0f4094 Fix new lines being added after imports with # fmt: skip on them (#4894)
• 70fc194 Revert "Fix # fmt: skip ignored in deeply nested expressions" (#4893)
• 7044b14 Prepare 25.12.0 release (#4891)
• 5b470f0 Fix # fmt: skip ignored in deeply nested expressions (#4883)
• 1b342ef Fix crash when multiple # fmt: skip comments are used in multi-part if-clau...
• 7b265f1 Pin Hatch to hopefully fix Docker builds (#4878)
• c9523f4 Attempt to fix Docker build failures (#4876)
• 0f376e0 Fix crashes when fmt directives are indented (#4856)
• a8bfcc1 Fix fmt: skip skipping the line after instead of the line it's on (#4855)
• Additional commits viewable in compare view

Updates pre-commit to 4.5.1

Release notes

Sourced from pre-commit's releases.

pre-commit v4.5.1

Fixes

• Fix language: python with repo: local without additional_dependencies.
  • #3597 PR by @​asottile.

Changelog

Sourced from pre-commit's changelog.

4.5.1 - 2025-12-16

Fixes

• Fix language: python with repo: local without additional_dependencies.
  • #3597 PR by @​asottile.

4.5.0 - 2025-11-22

Features

• Add pre-commit hazmat.
  • #3585 PR by @​asottile.

4.4.0 - 2025-11-08

Features

• Add --fail-fast option to pre-commit run.
  • #3528 PR by @​JulianMaurin.
• Upgrade ruby-build / rbenv.
  • #3566 PR by @​asottile.
  • #3565 issue by @​MRigal.
• Add language: unsupported / language: unsupported_script as aliases for language: system / language: script (which will eventually be deprecated).
  • #3577 PR by @​asottile.
• Add support docker-in-docker detection for cgroups v2.
  • #3535 PR by @​br-rhrbacek.
  • #3360 issue by @​JasonAlt.

Fixes

• Handle when docker gives SecurityOptions: null.
  • #3537 PR by @​asottile.
  • #3514 issue by @​jenstroeger.
• Fix error context for invalid stages in .pre-commit-config.yaml.
  • #3576 PR by @​asottile.

4.3.0 - 2025-08-09

Features

• language: docker / language: docker_image: detect rootless docker.
  • #3446 PR by @​matthewhughes934.
  • #1243 issue by @​dkolepp.
• language: julia: avoid startup.jl when executing hooks.
  • #3496 PR by @​ericphanson.
• language: dart: support latest dart versions which require a higher sdk lower bound.
  • #3507 PR by @​bc-lee.

... (truncated)

Commits

• 8a0630c v4.5.1
• fcbc745 Merge pull request #3597 from pre-commit/empty-setup-py
• 51592ee fix python local template when artifact dirs are present
• 67e8faf Merge pull request #3596 from pre-commit/pre-commit-ci-update-config
• c251e6b [pre-commit.ci] pre-commit autoupdate
• 98ccafa Merge pull request #3593 from pre-commit/pre-commit-ci-update-config
• 4895355 [pre-commit.ci] pre-commit autoupdate
• 2cedd58 Merge pull request #3588 from pre-commit/pre-commit-ci-update-config
• 465192d [pre-commit.ci] pre-commit autoupdate
• fd42f96 Merge pull request #3586 from pre-commit/zipapp-sha256-file-not-needed
• Additional commits viewable in compare view

Updates pylint-django to 2.7.0

Release notes

Sourced from pylint-django's releases.

Version 2.7.0 (1 Jan 2026)

Changelog

We added support for pylint 4.0.0+.

Other

- CI now tests against Django 5.2
- CI now tests against python 3.13
- CI now tests against python 3.14
- CI now tests against pylint 4.0.0+

Changelog

Sourced from pylint-django's changelog.

Version 2.7.0

We added support for pylint 4.0.0+.

Other

- CI now tests against Django 5.2
- CI now tests against python 3.13
- CI now tests against python 3.14
- CI now tests against pylint 4.0.0+
Version 2.6.1
NOTICE

We dropped support for Python 3.7, 3.8, and for pylint below 3.0.

Bugfixes

- Added Django aliases for ranges to support psycopg 2 and 3 (`[#421](https://github.com/pylint-dev/pylint-django/issues/421) <https://github.com/pylint-dev/pylint-django/pull/421>`_)
- Support for Python 3.12 datetime (`[#427](https://github.com/pylint-dev/pylint-django/issues/427) <https://github.com/pylint-dev/pylint-django/pull/427>`_)
- Fixed location of installed LICENSE file (`[#431](https://github.com/pylint-dev/pylint-django/issues/431) <https://github.com/pylint-dev/pylint-django/issues/431>`_)
- Fixed ForeignKeyStringChecker referencing linter config incorrectly (`[#430](https://github.com/pylint-dev/pylint-django/issues/430) <https://github.com/pylint-dev/pylint-django/issues/430>`_)
Other

- CI now tests against Django 5.1
Version 2.6.0 (09 Oct. 2024)
Not released for lack of a release pipeline at the time the tag was created.
Version 2.5.5 (14 May 2023)
NOTICE


This version drops support for Python 3.6
Bugfixes

... (truncated)

Commits

• ec4124e Updating changelog for 2.7 release
• 778342f Fixes for pylint 4.
• c41afac Permit to use pylint 4+, bump own version
• 8f9b230 [pre-commit.ci] pre-commit autoupdate
• d61ef5f Remove the compat layer for 'only_required_for_messages'
• e40d785 Use anchor to exclude functional tests in pre-commit (#473)
• 64279cb Add support for python 3.14 (#472)
• 7a63f43 Disable the test for DecimalField to be able to release for python 3.13, 3.14...
• 100ec5c Fix a typo in pylint_django/tests/test_func.py
• 156b99d Add typing to '_attribute_is_magic'
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions