build(deps): bump the uv group across 1 directory with 2 updates

[dependabot]

Bumps the uv group with 2 updates in the / directory: python-engineio and python-socketio.

Updates python-engineio from 4.13.1 to 4.13.2

Release notes

Sourced from python-engineio's releases.

Release 4.13.2

See CHANGES.md for release notes.

Changelog

Sourced from python-engineio's changelog.

python-engineio change log

Release 4.13.3 - 2026-06-20

• Make sure client disconnects when write loop exits #455 (commit)
• Address flaky unit test #444 (commit)
• Stop using codecov service, since it has been failing for a long time (commit)

Release 4.13.2 - 2026-05-21

• Prevent unnecessary resource allocations #441 (commit)
• Add zizmor to CI builds #437 (commit)

Release 4.13.1 - 2026-02-06

• Document that a process can have only one custom JSON module (commit)
• Switch to Furo documentation template (commit)

Release 4.13.0 - 2025-12-24

• Apply escaping rules when parsing cookie values (commit)
• Several minor improvements to the aiohttp integration #419 (commit) (thanks PaulWasTaken!)
• Clarify logging behavior in documentation #421 (commit) (thanks ZipFile!)
• Address deprecation warnings #422 (commit)
• Add 3.14 and pypy-3.11 CI builds (commit)
• Drop Python 3.8 and 3.9 from CI builds (commit)

Release 4.12.3 - 2025-09-28

• Reset client queue upon disconnection #414 (commit)
• Support ['*'] in addition to '*' in the cors_allowed_origins option #410 (commit) (thanks Wu Clan!)

Release 4.12.2 - 2025-06-04

• Support new monkey-patched gevent Queue class in the client #403 (commit)
• Better support of the ASGI spec when interpreting WebSocket events #405 (commit) (thanks Eric Zhang!)

Release 4.12.1 - 2025-05-11

• Accept empty binary values in the async server #404 (commit)
• Add SPDX license identifier #401 (commit) (thanks Marc Mueller!)

Release 4.12.0 - 2025-04-12

• Optimize packet parsing to avoid unnecessary calls to JSON parser #399 (commit)
• Pass environ as a second argument to callable option cors_allowed_origins #398 (commit) (thanks wft-swas!)

Release 4.11.2 - 2024-12-29

• Fix incorrect disconnection reason reported when browser page is closed (commit)

... (truncated)

Commits

• b698159 Release 4.13.2
• ceeeb5e prevent unnecessary resource allocation (#441)
• eb771e0 tox configuration
• 74c3a0b Bump qs and body-parser in /examples/client/javascript (#440) #nolog
• e2278e1 Bump qs and body-parser in /examples/server/javascript (#439) #nolog
• a35f46d remove unnecessary build dependency
• 8963cca Bump ujson from 5.4.0 to 5.12.1 in /examples/server/sanic (#438) #nolog
• 68eb36a add zizmor to ci (#437)
• 9cf6b72 Bump aiohttp from 3.13.3 to 3.13.4 in /examples/server/aiohttp (#435) #nolog
• 1d08ca3 Bump path-to-regexp from 0.1.12 to 0.1.13 in /examples/client/javascript (#43...
• Additional commits viewable in compare view

Updates python-socketio from 5.16.1 to 5.16.2

Release notes

Sourced from python-socketio's releases.

Release 5.16.2

See CHANGES.md for release notes.

Changelog

Sourced from python-socketio's changelog.

python-socketio change log

Release 5.16.3 - 2026-06-15

• Catch all exceptions in redis and rabbitmq client managers #1581 (commit)

Release 5.16.2 - 2026-05-21

• Prevent unnecessary resource allocations #1574 (commit)
• Add zizmor to CI builds #1570 (commit)

Release 5.16.1 - 2026-02-06

• Use configured JSON module in managers #1549 (commit)
• Admin UI fixes: remove duplicate tasks, report transport upgrades (commit)
• Switch to Furo documentation template (commit)
• Add Python free-threading to CI #1554 (commit)

Release 5.16.0 - 2025-12-24

• Address deprecation warnings (commit)
• Drop Python 3.8 and 3.9 from CI builds (commit)

Release 5.15.1 - 2025-12-16

• Restore support multiple arguments via pubsub emits #1540 (commit)

Release 5.15.0 - 2025-11-22

• Retry initial Redis connection #1534 ([commit #1](miguelgrinberg/python-socketio@1e903e1) [commit #2](miguelgrinberg/python-socketio@5e898a9))
• Correctly regenerate RabbitMQ binding after a connection failure #1516 (commit) (thanks Gritty_dev!)
• Support ext_type in the MsgPackPacket class #1521 (commit)
• Support sending bytesarrays when using pub/sub managers (commit)
• Fix typos in documentation #1520 (commit) (thanks Lê Nam Khánh!)
• Improvements to the logging documentation (commit)

Release 5.14.3 - 2025-10-29

• Support Python's native ConnectionRefusedError exception to reject a connection #1515 (commit)
• Push binary data to the aiopika client manager #1514 (commit)

Release 5.14.2 - 2025-10-15

• Restore binary message support in message queue setups #1509 (commit)
• Fix formatting of client connection error #1507 (commit)
• Add 3.14 and pypy-3.11 CI tasks (commit)
• Improve documentation of the BaseManager.get_participants() method (commit)

Release 5.14.1 - 2025-10-02

... (truncated)

Commits

• 6e2b717 Release 5.16.2
• cb65829 update python-engineio version
• ca140fe prevent unnecessary resource allocation (#1574)
• b29beef tox configuration
• e898130 Bump ujson from 5.4.0 to 5.12.1 in /examples/server/sanic (#1573) #nolog
• 05c32f5 Bump qs and body-parser in /examples/server/javascript (#1572) #nolog
• 287dc67 Bump qs and body-parser in /examples/client/javascript (#1571) #nolog
• 664dc27 add zizmor to ci (#1570)
• 14c6236 Bump django in /examples/server/wsgi/django_socketio (#1566) #nolog
• 29b2e5c Bump aiohttp from 3.13.3 to 3.13.4 in /examples/server/aiohttp (#1565) #nolog
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.