chore(deps): bump the uv group across 1 directory with 6 updates

[dependabot]

Bumps the uv group with 6 updates in the / directory:

Package	From	To
json-repair	0.59.10	0.60.1
pypdfium2	5.8.0	5.9.0
transformers	5.9.0	5.10.2
ruff	0.15.14	0.15.16
prek	0.4.3	0.4.4
ty	0.0.40	0.0.46

Updates json-repair from 0.59.10 to 0.60.1

Release notes

Sourced from json-repair's releases.

Release 0.60.1

Added

• A potential infinite loop in schema resolution could cause an application using the library to crash if the schema was self referential

Support this project

json_repair is maintained as a side project and stays free for everyone.

If it saves you debugging time, helps you handle LLM-generated JSON, or is part of your production workflow, please consider:

• starring the repository to help more developers find it
• sharing it with teams working with unreliable JSON output
• sponsoring the project here: https://github.com/sponsors/mangiucugna

Sponsorship helps justify the time spent fixing edge cases, improving performance, and keeping the library reliable.

Release 0.60.0

Added

• Support for repairing string values that contain low smart quote spans like „... when the closing quote is emitted as ASCII " instead of Unicode ”. Issue #198

Support this project

json_repair is maintained as a side project and stays free for everyone.

If it saves you debugging time, helps you handle LLM-generated JSON, or is part of your production workflow, please consider:

• starring the repository to help more developers find it
• sharing it with teams working with unreliable JSON output
• sponsoring the project here: https://github.com/sponsors/mangiucugna

Sponsorship helps justify the time spent fixing edge cases, improving performance, and keeping the library reliable.

Commits

• 63992e9 Fix circular schema ref handling
• 7cd8391 Fix #198 support low smart quote spans in strings
• 46be950 update ANGENTS guidance
• 0015c74 Fix README example for #197
• See full diff in compare view

Updates pypdfium2 from 5.8.0 to 5.9.0

Release notes

Sourced from pypdfium2's releases.

5.9.0

Changes (Release 5.9.0)

Summary (pypdfium2)

• Finally updated native sourcebuild from pdfium 7191 to 7841. Updating the script & patches, and tracking down any issues that cropped up, adding new patches to fix them, turned out to be a great deal of work.
• Created gn-dist project providing recent builds of GN (generate-ninja) for Linux (glibc and musl, full set of architectures). Updated pypdfium2's cibuildwheel config and workflows accordingly to use gn-dist rather than outdated distro packages of GN. Scripting to build GN from source previously included in pypdfium2's setup has moved to gn-dist. In build_native.py, patches for legacy GN are still included and enabled by default for now, but you can pass --no-legacy-gn to skip them. To make updating more straightforward, this mode will be made default and the patches will be removed in the future.
• Workflows overhaul.
  • Deduplicated workflow_dispatch and workflow_call inputs using YAML anchors & aliases (available on GHA since 09/2025).
  • Replaced benc-uk/workflow-dispatch action with reusable workflow calls.
  • Deduplicated series of individual jobs by switching to matrices. Handle if-conditions through an input parameter to the called workflow, because (unlike jobs) matrix entries have no built-in conditionality.
  • Updated to Python 3.14 (mostly). Simplified test matrices to probe just a few Python versions (e.g. 3.8, 3.11, 3.14).
• Limited who has maintainer access to the repo and project sites. mara004, the author and so far only active committer of pypdfium2, now is (and will remain) sole owner. Inactive co-maintainers no longer have access, but are welcome to submit PRs. In the event of the author being unable to pursue this project further, it can be forked and a new maintainer may build their own trust, but given the risks inherent to maintainer changes, it has been decided that pypdfium2 will remain mara004's personal project. The existing userbase will not be handed over to another maintainer.

Commits between 5.8.0 and 5.9.0 (latest commit first):

• f4b4032a [autorelease main] update 5.9.0
• 073a8730 Add another note to the changelog
• fbcf26ce bulid_native: make --version main work (in gcc mode)
• 22530e39 Prepare changelog for next release
• 3628a5a0 fix typo 'pouplar' (to 'popular') (cf. #436)
• 1838acb1 build_native.py: ack //build/toolchain/linux/unbundle
• 6570b33b build_native: cherry-pick openjpeg security fix
• ce1f0f77 android: set use_mold to false
• 53c58228 justfile: open browser in background
• 71568ff6 AutoCloseable style nit
• af847562 correction: negative crop does not actually work
• f729f447 pyproject.toml: align order of commented-out system libs
• 2044a804 Make autoflake happy
• 1da966ec Drop gn_build.patch
• a6d1ee6a cibw/loongarch64: fix GN version
• 9cae361a Improve gn-dist integration
• ca980469 build_toolchained: rework GN task, call honor_gn_dist()
• 767bd0f9 Bring recent GN to sbuild/sbuild_native workflows
• ababbbd6 cibw: move down gn-dist handlers
• 57f496cd cibw: spell out list of CPUs instead of using || true
• 96f527b7 cibw: fix loongarch64 not getting gn_dist binary
• 4cb251ee Use gn-dist (#432)

... (truncated)

Commits

• f4b4032 [autorelease main] update 5.9.0
• 073a873 Add another note to the changelog
• fbcf26c bulid_native: make --version main work (in gcc mode)
• 22530e3 Prepare changelog for next release
• 3628a5a fix typo 'pouplar' (to 'popular') (cf. #436)
• 1838acb build_native.py: ack //build/toolchain/linux/unbundle
• 6570b33 build_native: cherry-pick openjpeg security fix
• ce1f0f7 android: set use_mold to false
• 53c5822 justfile: open browser in background
• 71568ff AutoCloseable style nit
• Additional commits viewable in compare view

Updates transformers from 5.9.0 to 5.10.2

Release notes

Sourced from transformers's releases.

Patch release v5.10.2

There was a big bug in the model conversion of models related to clip, this affected models like sam3 and others. Please make sure to update 🙏

• Fix conversion for clip models by @​zucchini-nlp (#46406)

Full Changelog: huggingface/transformers@v5.10.1...v5.10.2

Release v5.10.1

v5.10.0 was yanked as we publish on a corrupted branch. Sorry everyone, this happens when we rush a release!!!

New Model additions

Gemma4 unified+ Gemma4 MTP

Gemma 4 12B Unified is an encoder-free multimodal model with pretrained and instruction-tuned variants. Unlike standard Gemma 4, which uses dedicated encoder towers, Gemma 4 12B Unified projects raw inputs directly into the language model's embedding space through lightweight linear pipelines. This results in a simpler architecture while maintaining strong multimodal performance.

Key differences from standard Gemma 4:

• No Vision Tower: Raw pixel patches are projected directly into LM space via a Dense + LayerNorm pipeline with factorized 2D positional embeddings, replacing the vision encoder.
• No Audio Tower: Raw 16 kHz waveform samples are chunked into fixed-length frames and projected through a simple RMSNorm → Linear pipeline, replacing the mel spectrogram + Conformer encoder.
• Shared Multimodal Pipeline: Both vision and audio use the same Gemma4UnifiedMultimodalEmbedder (RMSNorm → Linear) for the final projection to text hidden space.

You can find the original Gemma 4 12B Unified checkpoints under the Gemma 4 release.

• who needs encoders? (#46385) by @​douglas-reid @​sgerrard @​vasqu @​molbap

Sapiens2

Sapiens2 is a family of high-resolution vision transformers pretrained on ~1 billion curated human images, designed for human-centric computer vision tasks including pose estimation, body-part segmentation, surface normal estimation, and pointmap estimation. The models scale from 0.4B to 5B parameters and train at native 1K resolution, with hierarchical 4K variants for extended spatial reasoning. Sapiens2 achieves substantial improvements over its predecessor with +4 mAP in pose estimation, +24.3 mIoU in body-part segmentation, and 45.6% error reduction in normal estimation.

Links: Documentation | Paper

• Add Sapiens2 Model (#45919) by @​guarin in #45919

DeepSeek-OCR-2

DeepSeek-OCR-2 is an OCR-specialized vision-language model built on a distinctive architecture that combines a SAM ViT-B vision encoder with a Qwen2 hybrid attention encoder, connected through an MLP projector to a DeepSeek-V2 Mixture-of-Experts (MoE) language model. The model features a hybrid attention mechanism that applies bidirectional attention over image tokens and causal attention over query tokens, enabling efficient and accurate document understanding. It supports both plain OCR tasks and grounding capabilities with coordinate-aware output for document conversion to markdown format.

Links: Documentation

• Add Deepseek-OCR-2 model (#45075) by @​thisisiron in #45075

Mellum

Mellum is a code-focused Mixture-of-Experts language model developed by JetBrains. It is derived from the Qwen3-MoE architecture with per-layer-type RoPE and interleaved sliding window attention. The model has 12B total parameters with 2.5B active parameters per token, using 64 routed experts with 8 activated per token across 28 layers.

Links: Documentation

• feat: Add support for JetBrains' Mellum v2 code generation model (#46112) by @​shadeMe in #46112

... (truncated)

Commits

• 0dad7b8 v5.10.2
• 8a4ffee Fix conversion for clip models (#46406)
• 90c3ae5 Patch because we had to yank 5.10 because the release branch was not up to date
• 0bd94b3 v5.10.0
• 1423d22 who needs encoders? (#46385)
• 50eb20a Fix dsv4 dequant + tp/ep (#46378)
• 74464e8 Fix wrong changes produced by style/repo. check bot (#46371)
• 1b8ec34 Fix path traversal when saving Bark voice preset embeddings (#46237)
• e820678 Add Sapiens2 Model (#45919)
• 595721c Pass library_name/version to Hub calls via a shared HfApi (#46318)
• Additional commits viewable in compare view

Updates ruff from 0.15.14 to 0.15.16

Release notes

Sourced from ruff's releases.

0.15.16

Release Notes

Released on 2026-06-04.

Preview features

• [flake8-async] Implement yield-in-context-manager-in-async-generator (ASYNC119) (#24644)
• [pylint] Narrow diagnostic range and exclude cases without exception handlers (PLW0717) (#25440)
• [ruff] Treat yield before break from a terminal loop as terminal (RUF075) (#25447)

Bug fixes

• [eradicate] Avoid flagging ruff:ignore comments as code (ERA001) (#25537)
• [eradicate] Fix ERA001/RUF100 conflict when noqa is on commented-out code (#25414)
• [pyflakes] Avoid removing the format call when it would change behavior (F523) (#25320)
• [pylint] Avoid syntax errors in invalid character replacements in f-strings before Python 3.12 (PLE2510, PLE2512, PLE2513, PLE2514, PLE2515) (#25544)
• [pyupgrade] Avoid converting format calls with more kinds of side effects (UP032) (#25484)

Rule changes

• [flake8-pytest-style] Avoid fixes for ambiguous argnames and argvalues combinations (PT006) (#24776)

Performance

• Drop excess capacity from statement suites during parsing (#25368)

Documentation

• [pydocstyle] Improve discoverability of rules enabled for each convention (#24973)
• [ruff] Restore example code for Python versions before 3.15 (RUF017) (#25439)
• Fix typo bin/active → bin/activate in tutorial (#25473)

Other changes

• Shrink additional parser AST collections (#25465)

Contributors

• @​Redslayer112
• @​koriyoshi2041
• @​George-Ogden
• @​TejasAmle
• @​anishgirianish
• @​ntBre
• @​MichaReiser
• @​loganrosen
• @​RafaelJohn9
• @​adityasingh2400

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.16

Released on 2026-06-04.

Preview features

• [flake8-async] Implement yield-in-context-manager-in-async-generator (ASYNC119) (#24644)
• [pylint] Narrow diagnostic range and exclude cases without exception handlers (PLW0717) (#25440)
• [ruff] Treat yield before break from a terminal loop as terminal (RUF075) (#25447)

Bug fixes

• [eradicate] Avoid flagging ruff:ignore comments as code (ERA001) (#25537)
• [eradicate] Fix ERA001/RUF100 conflict when noqa is on commented-out code (#25414)
• [pyflakes] Avoid removing the format call when it would change behavior (F523) (#25320)
• [pylint] Avoid syntax errors in invalid character replacements in f-strings before Python 3.12 (PLE2510, PLE2512, PLE2513, PLE2514, PLE2515) (#25544)
• [pyupgrade] Avoid converting format calls with more kinds of side effects (UP032) (#25484)

Rule changes

• [flake8-pytest-style] Avoid fixes for ambiguous argnames and argvalues combinations (PT006) (#24776)

Performance

• Drop excess capacity from statement suites during parsing (#25368)

Documentation

• [pydocstyle] Improve discoverability of rules enabled for each convention (#24973)
• [ruff] Restore example code for Python versions before 3.15 (RUF017) (#25439)
• Fix typo bin/active → bin/activate in tutorial (#25473)

Other changes

• Shrink additional parser AST collections (#25465)

Contributors

• @​Redslayer112
• @​koriyoshi2041
• @​George-Ogden
• @​TejasAmle
• @​anishgirianish
• @​ntBre
• @​MichaReiser
• @​loganrosen
• @​RafaelJohn9
• @​adityasingh2400

0.15.15

... (truncated)

Commits

• 6c498ab Bump 0.15.16 (#25635)
• e51e132 [flake8-async] Implement yield-in-context-manager-in-async-generator (`AS...
• 7c6dcd9 [ty] Add caching for pattern match narrowing (#25613)
• 27058fc [ty] Compact retained definition and expression identities (#25606)
• bf80d05 Fix CODEOWNERS syntax (#25622)
• 10ccd51 Shrink additional parser AST collections (#25465)
• 0d7135f [ty] Upgrade Salsa (#25545)
• 49493a3 [ty] Show type alias value on hover (#25381)
• 85207d3 [ty] sys.implementation.version is not sys.version_info (#25608)
• a8a0614 [ty] Avoid retaining duplicate function signatures (#25609)
• Additional commits viewable in compare view

Updates prek from 0.4.3 to 0.4.4

Release notes

Sourced from prek's releases.

0.4.4

Release Notes

Released on 2026-06-04.

✨ Highlights

0.4.4 makes prek run easier to watch and easier to slice.

Hook stream output now shows a small live preview under the running hook in the progress UI. Long-running hooks no longer look stuck while they are producing logs, and failed hooks are easier to diagnose because recent output is already visible before the final result.

The new group selector lets a single config support different workflows. Tag hooks with groups, then select or exclude those groups at run time:

repos:
  - repo: local
    hooks:
      - id: format
        name: Format Python
        language: system
        entry: ruff format
        groups: [format, ci]
  - id: lint
    name: Lint Python
    language: system
    entry: ruff check
    groups: [lint, ci]

prek run --all-files --group ci
prek run --all-files --no-group format

This is useful when local development, CI, slow validation, or project-specific checks need different hook sets without splitting the config.

💚 Sponsorship

If prek saves time for you or your team, please consider sponsoring the project on GitHub Sponsors. It helps keep new features, performance work, and maintenance moving.

Enhancements

... (truncated)

Changelog

Sourced from prek's changelog.

0.4.4

Released on 2026-06-04.

Highlights

0.4.4 makes prek run easier to watch and easier to slice.

Hook stream output now shows a small live preview under the running hook in the progress UI. Long-running hooks no longer look stuck while they are producing logs, and failed hooks are easier to diagnose because recent output is already visible before the final result.

The new group selector lets a single config support different workflows. Tag hooks with groups, then select or exclude those groups at run time:

repos:
  - repo: local
    hooks:
      - id: format
        name: Format Python
        language: system
        entry: ruff format
        groups: [format, ci]
  - id: lint
    name: Lint Python
    language: system
    entry: ruff check
    groups: [lint, ci]

prek run --all-files --group ci
prek run --all-files --no-group format

This is useful when local development, CI, slow validation, or project-specific checks need different hook sets without splitting the config.

Enhancements

• Add hook group filters to prek run (#2141)
• Delay hook output preview rendering (#2140)
• Stream hook output in progress UI (#2136)

Bug fixes

• Fix intent-to-add stash restore (#2143)

... (truncated)

Commits

• f44270e Bump version 0.4.4 (#2148)
• da457c5 Document hook stage file input (#2147)
• 0fa2929 Add hook group filters to prek run (#2141)
• 9b0047f Fix intent-to-add stash restore (#2143)
• 00b2520 Delay hook output preview rendering (#2140)
• a54fdf0 Simplify hook output preview rendering (#2139)
• ab7165d Stream hook output in progress UI (#2136)
• f609584 Remove unpinned dotnet test (#2137)
• ce0d8b3 Update Rust to 1.96 (#2134)
• 1815fc5 Update PyPI Downloads badge to dynamic JSON
• See full diff in compare view

Updates ty from 0.0.40 to 0.0.46

Release notes

Sourced from ty's releases.

0.0.46

Release Notes

Released on 2026-06-08.

Bug fixes

• Avoid crash when hovering over Callable (#25759)

Core type checking

• Support Callable() in match statement class patterns (#25541)
• Improve support for enum.property (#25681)

Contributors

• @​carljm
• @​charliermarsh
• @​thejchap

Install ty 0.0.46

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ty/releases/download/0.0.46/ty-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://releases.astral.sh/github/ty/releases/download/0.0.46/ty-installer.ps1 | iex"

Download ty 0.0.46

File	Platform	Checksum
ty-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ty-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
ty-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum
ty-i686-pc-windows-msvc.zip	x86 Windows	checksum
ty-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
ty-aarch64-unknown-linux-gnu.tar.gz	ARM64 Linux	checksum
ty-i686-unknown-linux-gnu.tar.gz	x86 Linux	checksum
ty-powerpc64-unknown-linux-gnu.tar.gz	PPC64 Linux	checksum
ty-powerpc64le-unknown-linux-gnu.tar.gz	PPC64LE Linux	checksum
ty-riscv64gc-unknown-linux-gnu.tar.gz	RISCV Linux	checksum
ty-s390x-unknown-linux-gnu.tar.gz	S390x Linux	checksum
ty-x86_64-unknown-linux-gnu.tar.gz	x64 Linux	checksum

... (truncated)

Changelog

Sourced from ty's changelog.

0.0.46

Released on 2026-06-08.

Bug fixes

• Avoid crash when hovering over Callable (#25759)

Core type checking

• Support Callable() in match statement class patterns (#25541)
• Improve support for enum.property (#25681)

Contributors

• @​carljm
• @​charliermarsh
• @​thejchap

0.0.45

Released on 2026-06-08.

Bug fixes

• Avoid treating dynamic class attributes as instance attributes (#25678)
• Fix divergence in recursive inference due to ambiguous overload (#25548)
• Preserve literal promotion for mixed bounds (#25648)

Diagnostics

• Add missing-type-argument lint rule (#25617)

Core type checking

• Add support for narrowing on tuple match cases (#25493)
• Check implicit open TypedDict extra items (#25628)
• Create fresh copies of generic callable typevars (#24949)
• Preserve deprecation on replacement functions (#25688)
• Preserve intersection receivers during attribute lookup (#25626)
• Preserve transparent callable decorators (#25030)

Performance

• Avoid AST load for callable description names (#25728)
• Avoid caching absent class decorators and type parameters (#25689)
• Avoid caching atomic type specializations (#25663)
• Avoid caching constant constraint relations (#25656)
• Avoid caching missing implicit attributes (#25649)
• Avoid caching trivial class-header queries (#25692)

... (truncated)

Commits

• 2917c84 Bump version to 0.0.46 (#3700)
• 210302b Bump version to 0.0.45 (#3696)
• 5be8bff Use removeprefix for relative README image paths (#3685)
• cb8043c docs: add mypy/pyright rule mapping reference page (#3336)
• f5523e2 Bump version to 0.0.44 (#3667)
• 29ce314 Bump version to 0.0.43 (#3648)
• 794322d Update docker/build-push-action action to v7.2.0 (#3629)
• ce89685 Update prek dependencies (#3628)
• 792fb71 Update docker/login-action action to v4.2.0 (#3630)
• 5c37747 Update docker/metadata-action action to v6.1.0 (#3631)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions