chore(deps): bump the test-data-dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the test-data-dependencies group with 6 updates in the /test/e2e/content-workspace/examples-shiny-python directory:

Package	From	To
shiny	1.1.0	1.5.0
shinywidgets	0.3.3	0.7.0
plotly	5.24.1	6.3.1
pandas	2.2.2	2.3.3
ridgeplot	0.1.25	0.5.0
scipy	1.15.3	1.16.3

Updates shiny from 1.1.0 to 1.5.0

Release notes

Sourced from shiny's releases.

shiny 1.5.0

New features

• Added AI-powered test generator for Shiny applications. Use shiny add test to automatically generate comprehensive Playwright tests for your apps using AI models from Anthropic or OpenAI. (#2041)

• ui.sidebar() is now interactively resizable. (#2020)

• ui.sidebar() gains a fillable argument to support vertical fill behavior in sidebars. (#2077)

• Added ui.insert_nav_panel(), ui.remove_nav_panel(), and ui.update_nav_panel() to support dynamic navigation. (#90)

• navset_card_*() now gains a full_screen option. (#1451)

• ui.update_*() functions now accept ui.TagChild (i.e., HTML) as input to the label and icon arguments. (#2020)

• The .output_*() methods of the ClientData class (e.g., session.clientdata.output_height()) can now be called without an id when called inside a @render function. (#1978)

• playwright.controller.InputActionButton gains a expect_icon() method. As a result, the already existing expect_label() no longer includes the icon. (#2020)

Breaking changes

• The ui.Chat and ui.MarkdownStream components are now imported from the new shinychat library. Future versions of shinychat will likely deprecate and remove some features from Chat. If you still want to use those features with the latest Shiny, we suggest pinning shinychat to it's initial release (v0.1.0). (#2051)

• express.ui.insert_accordion_panel()'s function signature has changed to be more ergonomic. Now you can pass the panel_title and panel_contents directly instead of ui.hold()ing the ui.accordion_panel() context manager. (#2042)

Improvements

• Improved the styling and readability of markdown tables rendered by ui.Chat() and ui.MarkdownStream(). (#1973)

• input_date(), input_date_range(), update_date(), and update_date_range() now support "" for values, mins, and maxes. In this case, no date will be specified on the client. (#1713) (#1689)

• Restricted the allowable types of the choices parameter of input_select(), input_selectize(), update_select(), and update_selectize() to actual set of allowable types (previously, the type was suggesting HTML-like values were supported). (#2048)

• Added module support for session.clientdata methods. This allows you to access client data values in Shiny modules without needing to namespace the keys explicitly. (#1978)

• Added timeout_secs parameter to create_app_fixture to allow testing apps with longer startup times. (#2033)

• Add support for selecting menu items in Navset controllers to improve dropdown navigation test coverage. (#2066)

• Python 3.13 is now offically supported and tested. (#1711)

Bug fixes

• Fixed issue where apps run in Workbench were unexpectedly crashing. Apps running in Workbench will now have ws_per_message_deflate=False enforced. (#2005)

• include_js() and include_css() now work as expected in multi-user settings and also when multiple files from the same directory are included. (#2061, #2069)

• Fixed numerous issues related to programmatically updating selectize options. (#2053)

  • update_selectize(options=...) no longer gets ignored when server=False (the default).
  • update_selectize(options=...) now works as expected in a module.

... (truncated)

Changelog

Sourced from shiny's changelog.

[1.5.0] - 2025-09-11

New features

• Added AI-powered test generator for Shiny applications. Use shiny add test to automatically generate comprehensive Playwright tests for your apps using AI models from Anthropic or OpenAI. (#2041)

• ui.sidebar() is now interactively resizable. (#2020)

• ui.sidebar() gains a fillable argument to support vertical fill behavior in sidebars. (#2077)

• Added ui.insert_nav_panel(), ui.remove_nav_panel(), and ui.update_nav_panel() to support dynamic navigation. (#90)

• navset_card_*() now gains a full_screen option. (#1451)

• ui.update_*() functions now accept ui.TagChild (i.e., HTML) as input to the label and icon arguments. (#2020)

• The .output_*() methods of the ClientData class (e.g., session.clientdata.output_height()) can now be called without an id when called inside a @render function. (#1978)

• playwright.controller.InputActionButton gains a expect_icon() method. As a result, the already existing expect_label() no longer includes the icon. (#2020)

Breaking changes

• The ui.Chat and ui.MarkdownStream components are now imported from the new shinychat library. Future versions of shinychat will likely deprecate and remove some features from Chat. If you still want to use those features with the latest Shiny, we suggest pinning shinychat to it's initial release (v0.1.0). (#2051)

• express.ui.insert_accordion_panel()'s function signature has changed to be more ergonomic. Now you can pass the panel_title and panel_contents directly instead of ui.hold()ing the ui.accordion_panel() context manager. (#2042)

Improvements

• Improved the styling and readability of markdown tables rendered by ui.Chat() and ui.MarkdownStream(). (#1973)

• input_date(), input_date_range(), update_date(), and update_date_range() now support "" for values, mins, and maxes. In this case, no date will be specified on the client. (#1713) (#1689)

• Restricted the allowable types of the choices parameter of input_select(), input_selectize(), update_select(), and update_selectize() to actual set of allowable types (previously, the type was suggesting HTML-like values were supported). (#2048)

• Added module support for session.clientdata methods. This allows you to access client data values in Shiny modules without needing to namespace the keys explicitly. (#1978)

• Added timeout_secs parameter to create_app_fixture to allow testing apps with longer startup times. (#2033)

• Add support for selecting menu items in Navset controllers to improve dropdown navigation test coverage. (#2066)

• Python 3.13 is now offically supported and tested. (#1711)

Bug fixes

• Fixed issue where apps run in Workbench were unexpectedly crashing. Apps running in Workbench will now have ws_per_message_deflate=False enforced. (#2005)

• include_js() and include_css() now work as expected in multi-user settings and also when multiple files from the same directory are included. (#2061, #2069)

• Fixed numerous issues related to programmatically updating selectize options. (#2053)

  • update_selectize(options=...) no longer gets ignored when server=False (the default).

... (truncated)

Commits

• 608a115 v1.5.0 release
• 5e3f2d5 Follow up to #2005: fix location of CHANGELOG item
• 65fa9b3 ci: Bump deploy-tests to use latest shiny+htmltools releases (#2084)
• 8b9d686 chore: Polish CHANGELOG for v1.5.0 release (#2081)
• 031d1ae chore(add-test): Rename testgen extra to add-test and update Makefile (#2082)
• 23a66cb feat(sidebar): Add fillable parameter (#2077)
• 83d3952 feat(cli): Add AI support to shiny add test (#2041)
• c78c8f1 fix: Make outside users able to read tmp files (#2070)
• 5bd00b6 docs: update module server and ui to incorporate #705 (#2044)
• 17e0b17 fix: errors on bookmark are now surfaced in the Python console (#2076)
• Additional commits viewable in compare view

Updates shinywidgets from 0.3.3 to 0.7.0

Release notes

Sourced from shinywidgets's releases.

shinywidgets 0.7.0

• datetime.date() values are properly JSON serialized. (#204)
• Fixed an issue were callbacks on a plotly FigureWidget object were getting dropped with recent versions of plotly. (#207, thanks @​simeonschwarzenberg)

shinywidgets 0.6.2

• Eliminate the possibility of a single @render_widget output from keeping a view of prior renders. (#196)

shinywidgets 0.6.1

• Fixed an issue introduced by v0.6.0 where cleanup wasn't happening when it should be. (#195)

shinywidgets 0.6.0

• Widgets initialized inside a reactive.effect() are no longer automatically removed when the effect invalidates. (#191)

shinywidgets 0.5.2

• Constructing a widget inside of a shiny.reactive.ExtendedTask() no longer errors out. (#188)

shinywidgets 0.5.1

• Fixes 'AttributeError: object has no attribute "repr_mimebundle"'. (#184)

shinywidgets 0.5.0

• Updates to accomodate the new plotly v6.0.0 release. (#182)
• Fixed an issue with plotly graphs sometimes not getting fully removed from the DOM. (#178)
• Added anywidget as a package dependency since it's needed now for altair and plotly (and installing this packages won't necessarily install anywidget). (#183)
• Fixed an issue with ipyleaflet erroring out when attempting to read the .model_id property of a closed widget object. (#179)
• Fixed an issue where altair charts would sometimes render to a 0 height after being shown, hidden, and then shown again. (#180)

shinywidgets 0.4.2

Fixed an issue where @render_widget would sometimes incorrectly render a new widget without removing the old one. (#167)

shinywidgets 0.4.1

Fixed a Python 3.9 compatibility issue.

shinywidgets 0.4.0

• Fixed a memory leak issue. (#167)

shinywidgets 0.3.4

• Fixed an issue where widgets would sometimes fail to render in a Quarto document. (#159)
• Fixed an issue where importing shinywidgets before a ipywidget implementation can sometimes error in a Shiny Express app. (#163)

Changelog

Sourced from shinywidgets's changelog.

[0.7.0] - 2025-07-14

• datetime.date() values are properly JSON serialized. (#204)
• Fixed an issue were callbacks on a plotly FigureWidget object were getting dropped with recent versions of plotly. (#207, thanks @​simeonschwarzenberg)

[0.6.2] - 2025-05-21

• Eliminate the possibility of a single @render_widget output from keeping a view of prior renders. (#196)

[0.6.1] - 2025-05-21

• Fixed an issue introduced by v0.6.0 where cleanup wasn't happening when it should be. (#195)

[0.6.0] - 2025-05-19

• Widgets initialized inside a reactive.effect() are no longer automatically removed when the effect invalidates. (#191)

[0.5.2] - 2025-04-04

• Constructing a widget inside of a shiny.reactive.ExtendedTask() no longer errors out. (#188)

[0.5.1] - 2025-01-30

• Fixes 'AttributeError: object has no attribute "repr_mimebundle"'. (#184)

[0.5.0] - 2025-01-29

• Updates to accomodate the new plotly v6.0.0 release. (#182)
• Fixed an issue with plotly graphs sometimes not getting fully removed from the DOM. (#178)
• Added anywidget as a package dependency since it's needed now for altair and plotly (and installing this packages won't necessarily install anywidget). (#183)
• Fixed an issue with ipyleaflet erroring out when attempting to read the .model_id property of a closed widget object. (#179)
• Fixed an issue where altair charts would sometimes render to a 0 height after being shown, hidden, and then shown again. (#180)

[0.4.2] - 2024-12-18

• Fixed an issue where @render_widget would sometimes incorrectly render a new widget without removing the old one. (#167)

[0.4.1] - 2024-12-17

• Fixed a Python 3.9 compatibility issue.

[0.4.0] - 2024-12-16

• Fixed a memory leak issue. (#167)

[0.3.4] - 2024-10-29

• Fixed an issue where widgets would sometimes fail to render in a Quarto document. (#159)
• Fixed an issue where importing shinywidgets before a ipywidget implementation can sometimes error in a Shiny Express app. (#163)

Commits

• 7f48f76 v0.7.0 release
• c2d4637 Closes #206: preserve plotly FigureWidget layout callbacks (#207)
• 9d36df5 Close #204: JSON serialize datetime.date() values
• d84e8d3 Start new version
• f0cd970 v0.6.2 release
• 923e108 Eliminate the possibility of a single render_widget output from keeping a v...
• 31410ef v0.6.1 release
• 212acf8 Properly cleanup when the Widget is initialized by an implicit as_widget() ...
• 03ed44c v0.6.0 release
• e3bd341 Workaround for broken plotly type
• Additional commits viewable in compare view

Updates plotly from 5.24.1 to 6.3.1

Release notes

Sourced from plotly's releases.

v6.3.1

Updated

• Update Plotly.js from version 3.1.0 to version 3.1.1. See the Plotly.js release notes for more information. [#5357]. Notable changes include:
  • Fix issue preventing Scattergl plots with text elements from rendering [plotly.js#7563]
• Use native legends when converting from matplotlib [#5312], with thanks to @​robertoffmoura to the contribution!
• Allow shared_yaxes to work with secondary axes [#5180], with thanks to @​gmjw for the contribution!

Fixed

• Fix issue where width/height in plot layout were not respected during Kaleido image export [#5325]
• Fix typo in default argument to _ternary_contour.py [#5315], with thanks to @​Lexachoc for the contribution!
• Fix incorrect fig.show() behavior when ipython is installed [#5258]

Full Changelog: plotly/plotly.py@v6.3.0...v6.3.1

v6.3.0

Updated

• Updated Plotly.js from version 3.0.1 to version 3.1.0. See the plotly.js release notes for more information. [#5318]

Added

• Exposed plotly.io.get_chrome() as a function which can be called from within a Python script. [#5282]

Fixed

• Resolved issue causing extraneous engine deprecation warnings [#5287], with thanks to @​jdbeel for the contribution!

v6.2.0

Added

• Add SRI (Subresource Integrity) hash support for CDN script tags when using include_plotlyjs='cdn'. This enhances security by ensuring browser verification of CDN-served plotly.js files [#5165] (with thanks to @​ddworken)

Fixed

• Allow setting Plotly.js path via pio.defaults [#5207]

Changed

• Refactor validation code to reduce bundle size [#5214] (with thanks to @​bmaranville)
• Add deprecation warnings when using Kaleido v0 or deprecated image export features [#5177]

v6.1.2

Fixed

• Fix type checking and code highlighting for graph_objects classes [#5199]

v6.1.1

Fixed

• Prevent swallowing of ValueError when creating a figure with subplots [#3888]
• Fix issue causing fig.write_image() to not generate an image [#5193]

v6.1.0

Updated

• Add support for Kaleido>=v1.0.0 for image generation [#5062, #5177]
• Reduce package bundle size by 18-24% via changes to code generation [#4978]

Fixed

... (truncated)

Changelog

Sourced from plotly's changelog.

[6.3.1] - 2025-10-02

Updated

• Update Plotly.js from version 3.1.0 to version 3.1.1. See the Plotly.js release notes for more information. [#5357]. Notable changes include:
  • Fix issue preventing Scattergl plots with text elements from rendering [plotly.js#7563]
• Use native legends when converting from matplotlib [#5312], with thanks to @​robertoffmoura to the contribution!
• Allow shared_yaxes to work with secondary axes [#5180], with thanks to @​gmjw for the contribution!

Fixed

• Fix issue where width/height in plot layout were not respected during Kaleido image export [#5325]
• Fix typo in default argument to _ternary_contour.py [#5315], with thanks to @​Lexachoc for the contribution!
• Fix incorrect fig.show() behavior when ipython is installed [#5258]

[6.3.0] - 2025-08-12

Updated

• Updated Plotly.js from version 3.0.1 to version 3.1.0. See the Plotly.js release notes for more information. [#5318]

Added

• Exposed plotly.io.get_chrome() as a function which can be called from within a Python script. [#5282]

Fixed

• Resolved issue causing extraneous engine deprecation warnings [#5287], with thanks to @​jdbeel for the contribution!

[6.2.0] - 2025-06-26

Added

• Add SRI (Subresource Integrity) hash support for CDN script tags when using include_plotlyjs='cdn'. This enhances security by ensuring browser verification of CDN-served plotly.js files [#5165] (with thanks to @​ddworken)

Fixed

• Allow setting Plotly.js path via pio.defaults [#5207]

Changed

• Refactor validation code to reduce bundle size [#5214] (with thanks to @​bmaranville)
• Add deprecation warnings when using Kaleido v0 or deprecated image export features [#5177]

[6.1.2] - 2025-05-27

Fixed

• Fix type checking and code highlighting for graph_objects classes [#5199]

[6.1.1] - 2025-05-20

Fixed

• Prevent swallowing of ValueError when creating a figure with subplots [#3888]
• Fix issue causing fig.write_image() to not generate an image [#5193]

[6.1.0] - 2025-05-15

... (truncated)

Commits

• ecb00fe update uv lockfile
• 4e96a43 version changes for v6.3.1
• a0de8c9 Merge pull request #5361 from plotly/matplotlib-import-fix
• 832b46c Merge branch 'main' into matplotlib-import-fix
• b258862 Merge pull request #5180 from gmjw/secondary-y-shared
• 2c5e2b6 fix matplotlib import
• 610b7ee Merge branch 'main' into secondary-y-shared
• fbbc9d6 Merge pull request #5322 from mgorny/plt-import
• d2af541 Merge pull request #5258 from plotly/fix-default-renderer-when-ipython-installed
• ead0c76 Merge branch 'main' into plt-import
• Additional commits viewable in compare view

Updates pandas from 2.2.2 to 2.3.3

Release notes

Sourced from pandas's releases.

Pandas 2.3.3

We are pleased to announce the release of pandas 2.3.3. This release includes some improvements and fixes to the future string data type (preview feature for the upcoming pandas 3.0). We recommend that all users upgrade to this version.

See the full whatsnew for a list of all the changes. Pandas 2.3.3 supports Python 3.9 and higher, and is the first release to support Python 3.14.

The release will be available on the conda-forge channel:

conda install pandas --channel conda-forge

Or via PyPI:

python3 -m pip install --upgrade pandas

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

Pandas 2.3.2

We are pleased to announce the release of pandas 2.3.2. This release includes some improvements and fixes to the future string data type (preview feature for the upcoming pandas 3.0). We recommend that all users upgrade to this version.

See the full whatsnew for a list of all the changes. Pandas 2.3.2 supports Python 3.9 and higher.

The release will be available on the conda-forge channel:

conda install pandas --channel conda-forge

Or via PyPI:

python3 -m pip install --upgrade pandas

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

Pandas 2.3.1

We are pleased to announce the release of pandas 2.3.1. This release includes some improvements and fixes to the future string data type (preview feature for the upcoming pandas 3.0). We recommend that all users upgrade to this version.

See the full whatsnew for a list of all the changes. Pandas 2.3.1 supports Python 3.9 and higher.

The release will be available on the conda-forge channel:

conda install pandas --channel conda-forge

Or via PyPI:

... (truncated)

Commits

• 9c8bc3e RLS: 2.3.3
• 6aa788a [backport 2.3.x] DOC: prepare 2.3.3 whatsnew notes for release (#62499) (#62508)
• b64f0df [backport 2.3.x] BUG: avoid validation error for ufunc with string[python] ar...
• 058eb2b [backport 2.3.x] BUG: String[pyarrow] comparison with mixed object (#62424) (...
• 2ca088d [backport 2.3.x] DEPR: remove the Period resampling deprecation (#62480) (#62...
• 92bf98f [backport 2.3.x] BUG: fix .str.isdigit to honor unicode superscript for older...
• e57c7d6 Backport PR #62452 on branch 2.3.x (TST: Adjust tests for numexpr 2.13) (#62454)
• e0fe9a0 Backport to 2.3.x: REGR: from_records not initializing subclasses properly (#...
• 23a1085 BUG: improve future warning for boolean operations with missaligned indexes (...
• 6113696 Backport PR #62396 on branch 2.3.x (PKG/DOC: indicate Python 3.14 support in ...
• Additional commits viewable in compare view

Updates ridgeplot from 0.1.25 to 0.5.0

Release notes

Sourced from ridgeplot's releases.

0.5.0

Breaking changes

• Dropped support for Python 3.9, in accordance with the official Python support policy^1 (#345)

Features

• Implement a new color_discrete_map parameter to allow users to specify custom colors for each trace (#348)

Miscellaneous

• Bump project classification from Pre-Alpha to Alpha (#336)

CI/CD

• Bump actions/github-script from 7 to 8 (#338)
• pre-commit autoupdate (#340)
• Bump peter-evans/find-comment from 3 to 4 (#342)
• pre-commit autoupdate (#341)
• Bump github/codeql-action from 3 to 4 (#344)
• Bump peter-evans/create-or-update-comment from 4 to 5 (#343)

---

0.4.0

Features

• Add support for custom row labels via a new row_labels argument (#333)

Deprecations

• Deprecated the show_yticklabels argument in favor of the new more general and flexible row_labels argument (#333)

CI/CD

• Add ./cicd_utils/find-unmentioned-prs.sh helper script to find merged PRs that were not mentioned in the changelog yet (#334)
• Bump actions/first-interaction from 1 to 3 (#331)
• Bump actions/checkout from 4 to 5 (#330)
• Bump actions/download-artifact from 4 to 5 (#329)
• Bump sigstore/gh-action-sigstore-python from 3.0.0 to 3.0.1 (#326)
• pre-commit autoupdate (#324)

Dependencies

• Remove importlib_metadata usage from conf.py (#332)

---

... (truncated)

Commits

• 58e008c Release version 0.5.0
• 591a0ee update changelog.md
• 66b5641 Merge pull request #348 from tpvasconcelos/274-color_discrete_map
• 2fa71d4 Fix local name collision in comprehension
• a6f9e7d Update test_color_discrete_map_eq_colormode_hack
• f4f0fa8 Add missing labels check for color_discrete_map
• 7f9cdf0 Add note about color_discrete_map
• 17f2724 Update changelog.md
• a1dfb5b Add color_discrete_map description to docstring
• 6555323 Update docstring
• Additional commits viewable in compare view

Updates scipy from 1.15.3 to 1.16.3

Release notes

Sourced from scipy's releases.

SciPy 1.16.3 Release Notes

SciPy 1.16.3 is a bug-fix release with no new features compared to 1.16.2.

Authors

• Name (commits)
• ChrisAB (1) +
• Lucas Colley (1)
• Ralf Gommers (3)
• Matt Haberland (8)
• Nick ODell (2)
• Ilhan Polat (1)
• Tyler Reddy (28)
• Lucas Roberts (2)

A total of 8 people contributed to this release. People with a "+" by their names contributed a patch for the first time. This list of names is automatically generated, and may not be fully complete.

The full issue and pull request lists, and the release asset hashes are available in the associated README.txt file.

SciPy 1.16.2 Release Notes

SciPy 1.16.2 is a bug-fix release with no new features compared to 1.16.1. This is the first stable release of SciPy to provide Windows on ARM wheels on PyPI.

Authors

• Name (commits)
• Dietrich Brunn (1)
• Ralf Gommers (6)
• Adam Jones (1)
• Gleb Khmyznikov (1) +
• Jost Migenda (1) +
• newyork_loki (1)
• Nick ODell (3)
• Dimitri Papadopoulos Orfanos (1)
• Ilhan Polat (2)
• Tyler Reddy (26)
• Mugunthan Selvanayagam (1) +
• Shuhei Watanabe (1) +

A total of 12 people contributed to this release.

... (truncated)

Commits

• b9105cc REL: 1.16.3 rel commit [wheel build]
• 4b7699c Merge pull request #23805 from tylerjereddy/treddy_backports_1.16.3
• 874b75b MAINT: PR 23805 wheel builds [wheel build]
• de06a58 DOC: PR 23805 revisions
• f642304 TST: linalg.svd: skip on 32-bit due to limited memory
• df47908 CI: PR 23805 revisions
• f584063 TST: stats.boxcox_llf: bump test tolerance for Accelerate (#23864)
• fc60b2f DOC: PR 23805 revisions
• 0dd12ec BLD: stats.multivariate_normal: silence pythran build warning
• d3b1e62 Revert "BLD: stats.multivariate_normal: suppress pythran build warning"
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[jonkeane]

Bundling with other dependabot bumps.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml