Bump ruff from 0.14.14 to 0.15.0 by dependabot[bot] · Pull Request #2893 · blacklanternsecurity/bbot

dependabot · 2026-02-09T04:48:13Z

Bumps ruff from 0.14.14 to 0.15.0.

Release notes

0.15.0

Release Notes

Released on 2026-02-03.

Check out the blog post for a migration guide and overview of the changes!

Breaking changes
Ruff now formats your code according to the 2026 style guide. See the formatter section below or in the blog post for a detailed list of changes.
The linter now supports block suppression comments. For example, to suppress N803 for all parameters in this function:
# ruff: disable[N803]
def foo(
    legacyArg1,
    legacyArg2,
    legacyArg3,
    legacyArg4,
): ...
# ruff: enable[N803]
See the documentation for more details.
The ruff:alpine Docker image is now based on Alpine 3.23 (up from 3.21).

The ruff:debian and ruff:debian-slim Docker images are now based on Debian 13 "Trixie" instead of Debian 12 "Bookworm."

Binaries for the ppc64 (64-bit big-endian PowerPC) architecture are no longer included in our releases. It should still be possible to build Ruff manually for this platform, if needed.

Ruff now resolves all extended configuration files before falling back on a default Python version.
Stabilization

The following rules have been stabilized and are no longer in preview:

blocking-http-call-httpx-in-async-function (ASYNC212)

blocking-path-method-in-async-function (ASYNC240)

blocking-input-in-async-function (ASYNC250)

map-without-explicit-strict (B912)

if-exp-instead-of-or-operator (FURB110)

single-item-membership-test (FURB171)

missing-maxsplit-arg (PLC0207)

unnecessary-lambda (PLW0108)

unnecessary-empty-iterable-within-deque-call (RUF037)

in-empty-collection (RUF060)

legacy-form-pytest-raises (RUF061)

non-octal-permissions (RUF064)

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.0

Released on 2026-02-03.

Check out the blog post for a migration guide and overview of the changes!

Breaking changes
Ruff now formats your code according to the 2026 style guide. See the formatter section below or in the blog post for a detailed list of changes.
The linter now supports block suppression comments. For example, to suppress N803 for all parameters in this function:
# ruff: disable[N803]
def foo(
    legacyArg1,
    legacyArg2,
    legacyArg3,
    legacyArg4,
): ...
# ruff: enable[N803]
See the documentation for more details.
The ruff:alpine Docker image is now based on Alpine 3.23 (up from 3.21).

The ruff:debian and ruff:debian-slim Docker images are now based on Debian 13 "Trixie" instead of Debian 12 "Bookworm."

Binaries for the ppc64 (64-bit big-endian PowerPC) architecture are no longer included in our releases. It should still be possible to build Ruff manually for this platform, if needed.

Ruff now resolves all extended configuration files before falling back on a default Python version.
Stabilization

The following rules have been stabilized and are no longer in preview:

blocking-http-call-httpx-in-async-function (ASYNC212)

blocking-path-method-in-async-function (ASYNC240)

blocking-input-in-async-function (ASYNC250)

map-without-explicit-strict (B912)

if-exp-instead-of-or-operator (FURB110)

single-item-membership-test (FURB171)

... (truncated)

Commits

ce5f7b6 Bump 0.15.0 (#23055)
b4e40f5 [ty] Fix __contains__ to respect descriptors (#23056)
848cb72 [ty] Fix narrowing of nonlocal variables with conditional assignments (#22966)
da7f33a [ty] Add a diagnostic for Final without assignment (#23001)
e65f9a6 Document markdown formatting feature (#22990)
c0c1b98 Format markdown code blocks with line-by-line regex parse (#22996)
9f8f3e1 Allow positional-only params with defaults in method overrides (#23037)
ef83810 [ty] ecosystem-analyzer: Support bare git repositories (#23054)
54dfee4 Customize where the fix_title sub-diagnostic appears (#23044)
b534607 2026 Ruff Formatter Style (#22735)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [ruff](https://github.com/astral-sh/ruff) from 0.14.14 to 0.15.0. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](astral-sh/ruff@0.14.14...0.15.0) --- updated-dependencies: - dependency-name: ruff dependency-version: 0.15.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

github-actions · 2026-02-09T05:11:09Z

📊 Performance Benchmark Report

Comparing dev (baseline) vs dependabot/pip/dev/ruff-0.15.0 (current)

📈 Detailed Results (All Benchmarks)

📋 Complete results for all benchmarks - includes both significant and insignificant changes

🧪 Test Name	📏 Base	📏 Current	📈 Change	🎯 Status
Bloom Filter Dns Mutation Tracking Performance	`4.21ms`	`4.17ms`	-0.8% ⚪	✅
Bloom Filter Large Scale Dns Brute Force	`17.56ms`	`17.51ms`	-0.3% ⚪	✅
Large Closest Match Lookup	`356.50ms`	`357.82ms`	+0.4% ⚪	✅
Realistic Closest Match Workload	`191.44ms`	`191.70ms`	+0.1% ⚪	✅
Event Validation Full Scan Startup Small Batch	`473.70ms`	`477.80ms`	+0.9% ⚪	✅
Event Validation Full Scan Startup Large Batch	`811.22ms`	`812.00ms`	+0.1% ⚪	✅
Make Event Autodetection Small	`31.14ms`	`31.31ms`	+0.5% ⚪	✅
Make Event Autodetection Large	`314.96ms`	`317.30ms`	+0.7% ⚪	✅
Make Event Explicit Types	`13.87ms`	`13.88ms`	+0.1% ⚪	✅
Excavate Single Thread Small	`4.018s`	`4.027s`	+0.2% ⚪	✅
Excavate Single Thread Large	`9.935s`	`9.961s`	+0.3% ⚪	✅
Excavate Parallel Tasks Small	`4.180s`	`4.206s`	+0.6% ⚪	✅
Excavate Parallel Tasks Large	`7.314s`	`7.348s`	+0.5% ⚪	✅
Is Ip Performance	`3.17ms`	`3.16ms`	-0.2% ⚪	✅
Make Ip Type Performance	`11.49ms`	`11.31ms`	-1.5% ⚪	✅
Mixed Ip Operations	`4.46ms`	`4.45ms`	-0.2% ⚪	✅
Typical Queue Shuffle	`62.13µs`	`62.13µs`	-0.0% ⚪	✅
Priority Queue Shuffle	`706.07µs`	`708.33µs`	+0.3% ⚪	✅

🎯 Performance Summary

✅ No significant performance changes detected (all changes <10%)

🐍 Python Version 3.11.14

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Feb 9, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump ruff from 0.14.14 to 0.15.0#2893

Bump ruff from 0.14.14 to 0.15.0#2893
dependabot[bot] wants to merge 1 commit intodevfrom
dependabot/pip/dev/ruff-0.15.0

dependabot bot commented on behalf of github Feb 9, 2026

Uh oh!

github-actions bot commented Feb 9, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Conversation

dependabot bot commented on behalf of github Feb 9, 2026

0.15.0

Release Notes

Breaking changes

Stabilization

0.15.0

Breaking changes

Stabilization

Uh oh!

github-actions bot commented Feb 9, 2026

📊 Performance Benchmark Report

🎯 Performance Summary

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants