Bump the version-updates group across 1 directory with 11 updates

[dependabot]

Bumps the version-updates group with 11 updates in the / directory:

Package	From	To
apsw	3.51.2.0	3.51.3.0
asyncio	3.4.3	4.0.0
impacket	0.11.0	0.13.0
netaddr	0.9.0	1.3.0
paramiko	3.5.1	4.0.0
pyopenssl	23.3.0	26.0.0
uvloop	0.21.0	0.22.1
ipython	8.38.0	8.39.0
ruff	0.12.12	0.15.7
coverage	7.13.4	7.13.5
pytest-cov	6.3.0	7.1.0

Updates apsw from 3.51.2.0 to 3.51.3.0

Release notes

Sourced from apsw's releases.

3.51.3.0

• Source
• Install
• Changelogs
• Documentation

The SQLite 3.52.0 release was withdrawn, so the corresponding APSW one was too.

Includes all the changes from the 3.52.0.0 release, except SQLITE_UTF8_ZT and sqlite3_carray_bind_v2.

SQLite extra adds extensions and programs that require the zlib compression library, notably zipfile and sqlar

Changelog

Sourced from apsw's changelog.

3.51.3.0

Includes all the changes from the 3.52.0.0 release listed below, except :code:SQLITE_UTF8_ZT and :code:sqlite3_carray_bind_v2.

:doc:extra adds extensions and programs that require the zlib compression library <https://www.zlib.net/>, notably zipfile <https://sqlite.org/zipfile.html> and sqlar <https://sqlite.org/sqlar.html>__

3.52.0.0

.. warning::

This SQLite release was withdrawn <https://sqlite.org/releaselog/3_52_0.html>__

Comprehensive async support - connections run in a dedicated worker thread with the event loop able to :code:await the results.

• :mod:asyncio, |trio|, and |anyio| are supported and tested
• Async callbacks can be used anywhere including:
  • scalar, window, and aggregate functions
  • virtual tables (only the methods you want)
  • :func:apsw.ext.make_virtual_module
  • :doc:VFS <vfs> (again, only the methods you want)
  • the various other SQLite hooks
• Cancellations and deadlines (timeouts) from the event loop apply to executing SQL as well as async callbacks
• Type stubs as used by type checkers and IDEs reflect async usage

Documentation:

• :doc:SQLite, Python, and APSW concurrency <async>
• :ref:async_usage
• :doc:example-async

Regularised str and repr for APSW objects:

• str and repr return the same value
• async and closed are indicated
• Subclasses name are used instead of the APSW parent class

SQLite has many extra useful extensions and programs that have to be compiled. These can be packaged with APSW for convenient access. See :doc:extra documentation. This is the default for PyPI builds. Also included is the experimental under development vec1 vector search extension <https://sqlite.org/vec1>__.

... (truncated)

Commits

• c31f31c note about the effect
• 792e97d Correct macos linker flag
• aace65c Another attempt at the cibuildwheel debug issue
• c945f04 Revert "Try to omit debug symbols"
• ec4fd40 Try to omit debug symbols
• 07d833a Strip libsqlite_tool
• 46f2726 They don't like to tell you why uploads failed
• a5ea156 Ignore errors running sqlar
• 40caa3f Include overloaded server in checksum reason message
• 8f56fe3 Get -ldl -lpthread etc
• Additional commits viewable in compare view

Updates asyncio from 3.4.3 to 4.0.0

Commits

• See full diff in compare view

Updates impacket from 0.11.0 to 0.13.0

Release notes

Sourced from impacket's releases.

Impacket 0.13.0

Project's main page at https://www.coresecurity.com/core-labs/open-source-tools/impacket

ChangeLog for 0.13.0:

1. Library improvements

   • Major SMB client/server refactor adds setInfo support, CIFS datetime helpers, and safer default share access to enable remote attribute and timestamp management. (@​covertivy)
   • Introduced per-structure encoding selectors and UTF-8-aware SMB structures so non-Latin resource names round-trip correctly. (@​alexisbalbachan)
   • Strengthened LDAP/Kerberos handling with channel binding plus signing, schema alignment with ldap3, and LDAPS-based LAPS retrieval against Windows Server 2025 DCs. (@​zblurx, @​alexisbalbachan, @​Ibrahim8879)
   • Improved DCE/RPC coverage with Netlogon authenticator fixes, updated DRS bind flags, expanded EVEN6 decoding, and a new ICPR interface to support relay-aware RPC workflows. (@​ThePirateWhoSmellsOfSunflowers, @​h3-josh-the-engineer, @​NtAlexio2, @​rtpt-romankarwacik)
   • Corrected SMB negotiation edge cases by fixing response padding, Unicode pipe lookups, and keyboard interrupts in SMB servers. (@​rtpt-erikgeiser, @​Abyss-emmm, @​exploide)
   • SMB Server enhancements to align Impacket's implementation with standard (@​jborean93)

2. Authentication & relay tooling

   • Added WinRMS relay clients/servers. (@​Defte_)
   • Improved IPv6 support, richer logging, and consistent console status reporting, plus an identity log to track compromised principals ( @​gabrielg5)
   • Introduced an RPC relay server with Endpoint Mapper discovery . (@​rtpt-romankarwacik)
   • Delivered SCCM Management/Distribution Point relay attacks. (@​q-roland)
   • Enhanced shadow credentials, SOCKS plugins, and target rotation with better IPv6 awareness and stability. (@​anadrianmanrique, @​gabrielg5)
   • Added options to strip SSP from Net-NTLMv1 captures and write relay-captured hashes for cracking workflows. (@​TurtleARM, @​p0rtL6)

3. Examples improvements

   • secretsdump.py gained a WMI shadow snapshot path, export hive boot key recovery, safer DRS flags, user-status reporting, and refined NTDS parsing. (@​PeterGabaldon, @​MaxToffy, @​h3-josh-the-engineer, @​Markb1337, @​snovvcrash)
   • MSSQL tooling gained channel binding tokens, restored reliable connections, richer linked-server file transfers, and inline command execution. (@​Defte_, @​rtpt-romankarwacik, @​trietend, @​kiriknik, @​Signum21)
   • Directory ACL helpers (dacledit, owneredit, rbcd, ldapshell) picked up mask selection, safer queries, and consistent -dc-host handling. (@​dadevel, @​shellinvictus, @​Fabrizzio53, @​ICheer_No0M, @​gabrielg5)
   • SMB operator utilities add reconnect and autocomplete options in smbclient and prevent smbexec from hanging on completion. (@​daddycocoaman, @​trietend, @​Vincent550102)
   • Remote access helpers such as rdp_check and wmiexec now support IPv6 targets and display created Process IDs for easier triage. (@​gabrielg5, @​alexisbalbachan)

4. New examples

   • attrib.py manipulates file attributes over SMB to showcase the new setInfo workflow. (@​covertivy)
   • filetime.py inspects and updates SMB file timestamps using the refreshed SMBConnection APIs. (@​covertivy)
   • badsuccessor.py demonstrates the AD CS “bad successor” attack path. (@​fulc2um)
   • regsecrets.py extracts LSA secrets from remote registry hives through [MS-RRP]. (@​laxaa, @​laxa)
   • samedit.py edits local SAM password hashes offline. (@​iorpim)
   • CheckLDAPStatus.py checks LDAP signing status and LDAPS channel binding status. (@​zblurx)

5. Project & packaging

   • Added the impacket.mssql namespace, relaxed the pyOpenSSL pin, and declared Python 3.13 support while dropping 3.8. (@​anadrianmanrique, @​Defte_)
   • Replaced pkg_resources with importlib.metadata for lightweight version discovery. (@​AdrianVollmer)

As always, thanks a lot to all these contributors that make this library better every day (up to now):

@​Abyss-emmm, @​AdrianVollmer, @​NeffIsBack, @​NtAlexio2, @​rtpt-alexanderneumann, @​asareynolds, @​dadevel, @​TurtleARM, @​Defte_, @​rtpt-erikgeiser, @​Fabrizzio53, @​fluffy-kaiju, @​gabrielg5, @​ICheer_No0M, @​exploide, @​jborean93, @​nitbx, @​laxaa, @​daddycocoaman, @​lucas0817, @​Markb1337, @​MaxToffy, @​Ibrahim8879, @​Narmjep, @​NuclearFizzler, @​iorpim, @​CipherCloak, @​PeterGabaldon, @​b1two, @​covertivy, @​rtpt-romankarwacik, @​ryanq47, @​SAERXCIT, @​Signum21, @​ThePirateWhoSmellsOfSunflowers, @​Vincent550102, @​anadrianmanrique, @​alexisbalbachan, @​d0gkiller87, @​Ridter, @​fulc2um, @​gjhami, @​h3-josh-the-engineer, @​kiriknik, @​marcobarlottini, @​p0rtL6, @​q-roland, @​shellinvictus, @​trietend, @​zblurx.

Impacket 0.12.0:

... (truncated)

Changelog

Sourced from impacket's changelog.

Impacket v0.13.0 (Oct 2025):

1. Library improvements

   • Major SMB client/server refactor adds setInfo support, CIFS datetime helpers, and safer default share access to enable remote attribute and timestamp management. (@​covertivy)

   • Introduced per-structure encoding selectors and UTF-8-aware SMB structures so non-Latin resource names round-trip correctly. (@​alexisbalbachan)

   • Strengthened LDAP/Kerberos handling with channel binding plus signing, schema alignment with ldap3, and LDAPS-based LAPS retrieval against Windows Server 2025 DCs. (@​zblurx, @​alexisbalbachan, @​Ibrahim8879)

   • Improved DCE/RPC coverage with Netlogon authenticator fixes, updated DRS bind flags, expanded EVEN6 decoding, and a new ICPR interface to support relay-aware RPC workflows. (@​ThePirateWhoSmellsOfSunflowers, @​h3-josh-the-engineer, @​NtAlexio2, @​rtpt-romankarwacik)

   • Corrected SMB negotiation edge cases by fixing response padding, Unicode pipe lookups, and keyboard interrupts in SMB servers. (@​rtpt-erikgeiser, @​Abyss-emmm, @​exploide)

   • SMB Server enhancements to align Impacket's implementation with standard (@​jborean93)

2. Authentication & relay tooling

   • Added WinRMS relay clients/servers. (@​Defte_)

   • Improved IPv6 support, richer logging, and consistent console status reporting, plus an identity log to track compromised principals ( @​gabrielg5)

   • Introduced an RPC relay server with Endpoint Mapper discovery . (@​rtpt-romankarwacik)

   • Delivered SCCM Management/Distribution Point relay attacks. (@​q-roland)

   • Enhanced shadow credentials, SOCKS plugins, and target rotation with better IPv6 awareness and stability. (@​anadrianmanrique, @​gabrielg5)

   • Added options to strip SSP from Net-NTLMv1 captures and write relay-captured hashes for cracking workflows. (@​TurtleARM, @​p0rtL6)

3. Examples improvements

   • secretsdump.py gained a WMI shadow snapshot path, export hive boot key recovery, safer DRS flags, user-status reporting, and refined NTDS parsing. (@​PeterGabaldon, @​MaxToffy, @​h3-josh-the-engineer, @​Markb1337, @​snovvcrash)

   • MSSQL tooling gained channel binding tokens, restored reliable connections, richer linked-server file transfers, and inline command execution. (@​Defte_, @​rtpt-romankarwacik, @​trietend, @​kiriknik, @​Signum21)

   • Directory ACL helpers (dacledit, owneredit, rbcd, ldapshell) picked up mask selection, safer queries, and consistent -dc-host handling. (@​dadevel, @​shellinvictus, @​Fabrizzio53, @​ICheer_No0M, @​gabrielg5)

   • SMB operator utilities add reconnect and autocomplete options in smbclient and prevent smbexec from hanging on completion. (@​daddycocoaman, @​trietend, @​Vincent550102)

   • Remote access helpers such as rdp_check and wmiexec now support IPv6 targets and display created Process IDs for easier triage. (@​gabrielg5, @​alexisbalbachan)

4. New examples

... (truncated)

Commits

• See full diff in compare view

Updates netaddr from 0.9.0 to 1.3.0

Release notes

Sourced from netaddr's releases.

1.3.0

Changelog: https://netaddr.readthedocs.io/en/latest/changes.html#release-1-3-0 Commits: netaddr/netaddr@1.2.1...1.3.0

1.2.1

Contains 1.2.0 and 1.2.1 changes

https://netaddr.readthedocs.io/en/latest/changes.html#release-1-2-0 https://netaddr.readthedocs.io/en/latest/changes.html#release-1-2-1

1.1.0

Changelog: https://netaddr.readthedocs.io/en/latest/changes.html#release-1-1-0 Commits: netaddr/netaddr@1.0.0...1.1.0

1.0.0

Changelog: https://netaddr.readthedocs.io/en/latest/changes.html#release-1-0-0 Commits: netaddr/netaddr@0.10.1...1.0.0

0.10.1

Changelog: https://netaddr.readthedocs.io/en/latest/changes.html#release-0-10-1 Commits: netaddr/netaddr@0.10.0...0.10.1

0.10.0

Changelog: https://netaddr.readthedocs.io/en/latest/changes.html#release-0-10-0 Commits: netaddr/netaddr@0.9.0...0.10.0

Changelog

Sourced from netaddr's changelog.

Release: 1.3.0

Date: 2024-05-28

Added:

• Add partial address expansion in :class:IPNetwork via the expand_partial switch, this enables opting into pre-1.1.0 behavior

Fixed:

• Fix running the test suite on musl systems
• Fix :class:IPAddress IPv6 parsing with :data:ZEROFILL enabled
• Fix handling of the :data:NOHOST flag in the :class:IPNetwork copy constructor

---

Release: 1.2.1

Date: 2024-02-17

Fixed:

• Fix bad version 1.2.0 upload to PyPI – now yanked. No changes to the package.

---

Release: 1.2.0

Date: 2024-02-17

Added:

• Add CLI tool subcommand to display :ref:cli-network-info.

Changed:

• Support running :ref:interactive-shell without IPython installed.

Fixed:

• Explicitly raise TypeError is a non-string value is passed to :func:valid_ipv4 or :func:valid_ipv6.

---

Release: 1.1.0

Date: 2024-02-15

... (truncated)

Commits

• 85a7b25 Bump the package version in the documentation to 1.3.0
• 75360b1 Release version 1.3.0
• 77c0075 Fix the name of the flag in the docstring
• 88b9455 Tune the partial network expansion flag
• c20b9c5 Synchronize docs/requirements.txt with poetry.lock
• 860bb0c Bump requests from 2.31.0 to 2.32.2 in /docs (#388)
• 39d255a Bump jinja2 from 3.1.3 to 3.1.4 in /docs (#382)
• 9561d22 Bump idna from 3.6 to 3.7 in /docs (#379)
• d2f5d05 IPNetwork: Allow partial addresses (again) (#377)
• 7347c71 Fix some IPv4-compatible/IPv4-mapped documentation mistakes
• Additional commits viewable in compare view

Updates paramiko from 3.5.1 to 4.0.0

Commits

• aad0370 Cut 4.0.0 in changelog
• 76f2406 Speling
• 8c4277c Fix syntax-warning-throwing unittest method call
• d3a9617 Test existence of root module dunder version
• 9579700 Nuke mentions of specific Python 3.x versions from docs etc
• dbfd52c Administrivia update: Python>=3.9, pyproject.toml, etc
• c2ba378 Remove outdated version check in GSS module
• 2af0dd7 I'm good at my job, honest
• e534b1a Fixes #973: remove DSA/DSS support
• 3523feb Tweak .gitignore to more safely ignore top level docs/
• See full diff in compare view

Updates pyopenssl from 23.3.0 to 26.0.0

Changelog

Sourced from pyopenssl's changelog.

26.0.0 (2026-03-15)

Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Dropped support for Python 3.7.
• The minimum cryptography version is now 46.0.0.

Deprecations: ^^^^^^^^^^^^^

Changes: ^^^^^^^^

• Added support for using aws-lc instead of OpenSSL.
• Properly raise an error if a DTLS cookie callback returned a cookie longer than DTLS1_COOKIE_LENGTH bytes. Previously this would result in a buffer-overflow. Credit to dark_haxor for reporting the issue. CVE-2026-27459
• Added OpenSSL.SSL.Connection.get_group_name to determine which group name was negotiated.
• Context.set_tlsext_servername_callback now handles exceptions raised in the callback by calling sys.excepthook and returning a fatal TLS alert. Previously, exceptions were silently swallowed and the handshake would proceed as if the callback had succeeded. Credit to Leury Castillo for reporting this issue. CVE-2026-27448

25.3.0 (2025-09-16)

Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Deprecations: ^^^^^^^^^^^^^

Changes: ^^^^^^^^

• Maximum supported cryptography version is now 46.x.

25.2.0 (2025-09-14)

Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

• The minimum cryptography version is now 45.0.7.

Deprecations: ^^^^^^^^^^^^^

Changes: ^^^^^^^^

• pyOpenSSL now sets SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER on connections by default, matching CPython's behavior.

... (truncated)

Commits

• 358cbf2 Prepare for 26.0.0 release (#1487)
• a8d28e7 Bump actions/cache from 4 to 5 (#1486)
• 6fefff0 Add aws-lc compatibility to tests and CI (#1476)
• a739f96 Bump actions/download-artifact from 8.0.0 to 8.0.1 (#1485)
• 8b4c66b Bump actions/upload-artifact in /.github/actions/upload-coverage (#1484)
• 02a5c78 Bump actions/upload-artifact from 6.0.0 to 7.0.0 (#1483)
• d973387 Bump actions/download-artifact from 7.0.0 to 8.0.0 (#1482)
• 57f09bb Fix buffer overflow in DTLS cookie generation callback (#1479)
• d41a814 Handle exceptions in set_tlsext_servername_callback callbacks (#1478)
• 7b29beb Fix not using a cryptography wheel on uv (#1475)
• Additional commits viewable in compare view

Updates uvloop from 0.21.0 to 0.22.1

Release notes

Sourced from uvloop's releases.

v0.22.1

This is identical to 0.22.0, re-ran with CI fixes

v0.22.0

Changes

• Fixes for Python 3.14 (#638) (by @​graingert @​hroncok @​paulocheque @​fantix in 46456b6a for #637)

• Add free-threading support (#693) (by @​kumaraditya303 in 286b3707 for #642)

Fixes

• Use Cython enum for __PREALLOCED_BUFS (#634) (by @​jakirkham in 7bb12a17 for #634)

• test: fix getaddrinfo test (#663) (by @​fantix in 56807922 for #663)

• test: fix task name for Python 3.13.3/3.14 (#662) (by @​cjwatson in 96b7ed31 for #662)

Commits

• 74f4c96 uvloop 0.22.1
• 321d345 ci: bump pypa/gh-action-pypi-publish
• 3cf6b44 uvloop 0.22.0
• e4d569e ci: use native ubuntu-24.04-arm
• d9fa054 ci: fix test and release workflow
• 7effa90 ci: fix artifact handling
• 286b370 add free-threading support (#693)
• 46456b6 Fixes for Python 3.14 (#638)
• 96b7ed3 test: fix task name for Python 3.13.3/3.14 (#662)
• 5680792 test: fix getaddrinfo test (#663)
• Additional commits viewable in compare view

Updates ipython from 8.38.0 to 8.39.0

Commits

• 8f440a2 release 8.39.0
• 7f7f46c Backport security fix to 8.x
• fb4ff1c windows: require IPYTHON_USE_PROGRAMDATA=1 opt-in to trust programdata
• bf99a9b back to dev
• See full diff in compare view

Updates ruff from 0.12.12 to 0.15.7

Release notes

Sourced from ruff's releases.

0.15.7

Release Notes

Released on 2026-03-19.

Preview features

• Display output severity in preview (#23845)
• Don't show noqa hover for non-Python documents (#24040)

Rule changes

• [pycodestyle] Recognize pyrefly: as a pragma comment (E501) (#24019)

Server

• Don't return code actions for non-Python documents (#23905)

Documentation

• Add company AI policy to contributing guide (#24021)
• Document editor features for Markdown code formatting (#23924)
• [pylint] Improve phrasing (PLC0208) (#24033)

Other changes

• Use PEP 639 license information (#19661)

Contributors

• @​tmimmanuel
• @​DimitriPapadopoulos
• @​amyreese
• @​statxc
• @​dylwil3
• @​hunterhogan
• @​renovate

Install ruff 0.15.7

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.7/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://releases.astral.sh/github/ruff/releases/download/0.15.7/ruff-installer.ps1 | iex"
</tr></table> 

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.7

Released on 2026-03-19.

Preview features

• Display output severity in preview (#23845)
• Don't show noqa hover for non-Python documents (#24040)

Rule changes

• [pycodestyle] Recognize pyrefly: as a pragma comment (E501) (#24019)

Server

• Don't return code actions for non-Python documents (#23905)

Documentation

• Add company AI policy to contributing guide (#24021)
• Document editor features for Markdown code formatting (#23924)
• [pylint] Improve phrasing (PLC0208) (#24033)

Other changes

• Use PEP 639 license information (#19661)

Contributors

• @​tmimmanuel
• @​DimitriPapadopoulos
• @​amyreese
• @​statxc
• @​dylwil3
• @​hunterhogan
• @​renovate

0.15.6

Released on 2026-03-12.

Preview features

• Add support for lazy import parsing (#23755)
• Add support for star-unpacking of comprehensions (PEP 798) (#23788)
• Reject semantic syntax errors for lazy imports (#23757)
• Drop a few rules from the preview default set (#23879)
• [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#23584)
• [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#23631)
• [flake8-bugbear] Implement delattr-with-constant (B043) (#23737)

... (truncated)

Commits

• 0ef39de Bump 0.15.7 (#24049)
• beb543b [ty] ecosystem-analyzer: Fail on newly panicking projects (#24043)
• 378fe73 Don't show noqa hover for non-Python documents (#24040)
• b5665bd [pylint] Improve phrasing (PLC0208) (#24033)
• 6e20f22 test: migrate show_settings and version tests to use CliTest (#23702)
• f99b284 Drain file watcher events during test setup (#24030)
• 744c996 [ty] Filter out unsatisfiable inference attempts during generic call narrowin...
• 1616095 [ty] Avoid inferring intersection types for call arguments (#23933)
• 7f275f4 [ty] Pin mypy_primer in setup_primer_project.py (#24020)
• 7255e36 [pycodestyle] Recognize pyrefly: as a pragma comment (E501) (#24019)
• Additional commits viewable in compare view

Updates coverage from 7.13.4 to 7.13.5

Changelog

Sourced from coverage's changelog.

Version 7.13.5 — 2026-03-17

• Fix: issue 2138_ describes a memory leak that happened when repeatedly using the Coverage API with in-memory data. This is now fixed.

• Fix: the markdown-formatted coverage report didn't fully escape special characters in file paths (issue 2141). This would be very unlikely to cause a problem, but now it's done properly, thanks to Ellie Ayla <pull 2142_>.

• Fix: the C extension wouldn't build on VS2019, but now it does (issue 2145_).

.. _issue 2138: coveragepy/coveragepy#2138 .. _issue 2141: coveragepy/coveragepy#2141 .. _pull 2142: coveragepy/coveragepy#2142 .. _issue 2145: coveragepy/coveragepy#2145

.. _changes_7-13-4:

Commits

• c88da14 docs: sample HTML for 7.13.5
• e2ac3e1 build: sample HTML shouldn't include the status.json file
• 910f8f3 docs: prep for 7.13.5
• 3a4819c style: make workflows more uniform
• 2a53705 chore: bump the action-dependencies group across 1 directory with 4 updates (...
• e7c878d chore: make upgrade
• ab4db40 build: use --generate-hashes when pinning
• a438753 chore: make upgrade
• 7b33457 refactor: some leftover pyupgrade 3.10 bits
• 2ff968d refactor: this type wasn't used anywhere
• Additional commits viewable in compare view

Updates pytest-cov from 6.3.0 to 7.1.0

Changelog

Sourced from pytest-cov's changelog.

7.1.0 (2026-03-21)

• Fixed total coverage computation to always be consistent, regardless of reporting settings. Previously some reports could produce different total counts, and consequently can make --cov-fail-under behave different depending on reporting options. See [#641](https://github.com/pytest-dev/pytest-cov/issues/641) <https://github.com/pytest-dev/pytest-cov/issues/641>_.

• Improve handling of ResourceWarning from sqlite3.

  The plugin adds warning filter for sqlite3 ResourceWarning unclosed database (since 6.2.0). It checks if there is already existing plugin for this message by comparing filter regular expression. When filter is specified on command line the message is escaped and does not match an expected message. A check for an escaped regular expression is added to handle this case.

  With this fix one can suppress ResourceWarning from sqlite3 from command line::

  pytest -W "ignore:unclosed database in <sqlite3.Connection object at:ResourceWarning" ...

• Various improvements to documentation. Contributed by Art Pelling in [#718](https://github.com/pytest-dev/pytest-cov/issues/718) <https://github.com/pytest-dev/pytest-cov/pull/718>_ and "vivodi" in [#738](https://github.com/pytest-dev/pytest-cov/issues/738) <https://github.com/pytest-dev/pytest-cov/pull/738>. Also closed [#736](https://github.com/pytest-dev/pytest-cov/issues/736) <https://github.com/pytest-dev/pytest-cov/issues/736>.

• Fixed some assertions in tests. Contributed by in Markéta Machová in [#722](https://github.com/pytest-dev/pytest-cov/issues/722) <https://github.com/pytest-dev/pytest-cov/pull/722>_.

• Removed unnecessary coverage configuration copying (meant as a backup because reporting commands had configuration side-effects before coverage 5.0).

7.0.0 (2025-09-09)

• Dropped support for subprocesses measurement.

  It was a feature added long time ago when coverage lacked a nice way to measure subprocesses created in tests. It relied on a .pth file, there was no way to opt-out and it created bad interations with coverage's new patch system <https://coverage.readthedocs.io/en/latest/config.html#run-patch>_ added in 7.10 <https://coverage.readthedocs.io/en/7.10.6/changes.html#version-7-10-0-2025-07-24>_.

  To migrate to this release you might need to enable the suprocess patch, example for .coveragerc:

  .. code-block:: ini

  [run] patch = subprocess

  This release also requires at least coverage 7.10.6.

• Switched packaging to have metadata completely in pyproject.toml and use hatchling <https://pypi.org/project/hatchling/>_ for building. Contributed by Ofek Lev in [#551](https://github.com/pytest-dev/pytest-cov/issues/551) <https://github.com/pytest-dev/pytest-cov/pull/551>_ with some extras in [#716](https://github.com/pytest-dev/pytest-cov/issues/716) <https://github.com/pytest-dev/pytest-cov/pull/716>_.

• Removed some not really necessary testing deps like six.

Commits

• 66c8a52 Bump version: 7.0.0 → 7.1.0
• f707662 Make the examples use pypy 3.11.
• 6049a78 Make context test use the old ctracer (seems the new sysmon tracer behaves di...
• 8ebf20b Update changelog.
• 861d30e Remove the backup context manager - shouldn't be needed since coverage 5.0, ...
• fd4c956 Pass the precision on the nulled total (seems that there's some caching goion...
• 78c9c4e Only run the 3.9 on older deps.
• 4849a92 Punctuation.
• 197c35e Update changelog and hopefully I don't forget to publish release again :))
• 14dc1c9 Update examples to use 3.11 and make the adhoc layout example look a bit more...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions