Merge pull request #454 from VectorInstitute/pre-commit-ci-update-config

[pre-commit.ci] pre-commit autoupdate

Author: emersodb

.github/workflows/static_code_checks.yaml

@@ -49,10 +49,6 @@ jobs:
           # PYSEC-2024-109 requires upgrading to DeepSpeed 0.15.1, which is currently blocked by pycyclops
           # PYSEC-2025-61 requires upgrading to Pillow 11.3.0}, which is currently blocked by pycyclops
           # PYSEC-2024-259 has note that this is disputed by multiple parties because this is intended PyTorch behaviour
-          # GHSA-2c2j-9gv5-cj73 is a starlette vulnerability that requires 0.47.2, but FastAPI cannot support moving to this yet.
-          # GHSA-xqrq-4mgf-ff32 is a vulnerability in python future. No fix exists yet.
-          # GHSA-p8cm-mm2v-gwjm, GHSA-6vm5-6jv9-rjpj, GHSA-x6ww-pf9m-m73m are all MONAI related with no fixes yet.
-          # GHSA-4xh5-x5gv-qwph is a pip vulnerability with tarball extraction that hasn't been patched yet.
           # GHSA-wf7f-8fxf-xfxc ML Flow vulnerability in deserialization that hasn't been patched yet.
           ignore-vulns: |
             GHSA-3749-ghw9-m3mg
@@ -62,9 +58,4 @@ jobs:
             PYSEC-2024-109
             PYSEC-2025-61
             PYSEC-2024-259
-            GHSA-xqrq-4mgf-ff32
-            GHSA-p8cm-mm2v-gwjm
-            GHSA-6vm5-6jv9-rjpj
-            GHSA-x6ww-pf9m-m73m
             GHSA-wf7f-8fxf-xfxc
-            GHSA-4xh5-x5gv-qwph

.pre-commit-config.yaml

@@ -21,7 +21,7 @@ repos:
       - id: check-toml
 
   - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: 'v0.13.3'
+    rev: 'v0.14.3'
     hooks:
     - id: ruff-check
       args: [--fix, --exit-non-zero-on-fix]