chore(deps): bump the python group across 1 directory with 7 updates

[dependabot]

Bumps the python group with 7 updates in the / directory:

Package	From	To
cryptography	48.0.1	49.0.0
boto3	1.43.21	1.43.31
google-auth	2.53.0	2.55.0
hcloud	2.20.0	2.21.0
linode-api4	5.44.0	5.45.0
openstacksdk	4.14.0	4.16.0
cs	3.4.1	4.0.0

Updates cryptography from 48.0.1 to 49.0.0

Changelog

Sourced from cryptography's changelog.

49.0.0 - 2026-06-12

* **BACKWARDS INCOMPATIBLE:** Support for ``x86_64`` macOS has been removed.
  We now only publish ``arm64`` wheels for macOS.
* **BACKWARDS INCOMPATIBLE:** Support for 32-bit Windows has been removed.
  Users should move to a 64-bit Python installation.
* **BACKWARDS INCOMPATIBLE:** Removed the deprecated
  ``PUBLIC_KEY_TYPES``, ``PRIVATE_KEY_TYPES``,
  ``CERTIFICATE_PRIVATE_KEY_TYPES``, ``CERTIFICATE_ISSUER_PUBLIC_KEY_TYPES``,
  and ``CERTIFICATE_PUBLIC_KEY_TYPES`` type aliases. Use
  ``PublicKeyTypes``, ``PrivateKeyTypes``, ``CertificateIssuerPrivateKeyTypes``,
  ``CertificateIssuerPublicKeyTypes``, and ``CertificatePublicKeyTypes``
  instead. These were deprecated in version 40.0.
* **BACKWARDS INCOMPATIBLE:** :class:`~cryptography.hazmat.primitives.ciphers.algorithms.ChaCha20`
  now treats the first 4 bytes of the ``nonce`` as a 32-bit little-endian block
  counter (as defined in :rfc:`7539`) and tracks the number of bytes processed.
  Attempting to encrypt or decrypt more data than the counter allows before it
  would overflow now raises a :class:`ValueError` rather than silently diverging
  from RFC 7539. Setting the counter portion of the ``nonce`` to zero allows
  encrypting up to 256 GiB with a given nonce.
* **BACKWARDS INCOMPATIBLE:** Loading an X.509 certificate whose ECDSA or DSA
  signature ``AlgorithmIdentifier`` contains encoded NULL parameters now raises
  a :class:`ValueError`. Such certificates are invalid, but older versions of
  Java emitted them; previously they loaded with a deprecation warning.
* Fixed cross-compilation of the CFFI bindings when ``PYO3_CROSS_LIB_DIR``
  is set. The build now derives the Python include directory from
  ``PYO3_CROSS_LIB_DIR`` instead of querying the host interpreter, which
  previously caused the build to fail during cross-compilations for embedded
  systems, on hosts which have same-version Python development headers
  installed as the target Python.
* Added support for signing and verifying X.509 certificates, certificate
  signing requests, and certificate revocation lists with
  :doc:`/hazmat/primitives/asymmetric/mldsa` keys, as well as loading
  certificates that contain ML-DSA public keys.
* Added :meth:`~cryptography.hazmat.primitives.hpke.KEM.enc_length` to
  :class:`~cryptography.hazmat.primitives.hpke.KEM` so callers can split the
  encapsulated key from the ciphertext returned by
  :meth:`~cryptography.hazmat.primitives.hpke.Suite.encrypt`.
* :meth:`~cryptography.x509.verification.ExtensionPolicy.require_present`,
  :meth:`~cryptography.x509.verification.ExtensionPolicy.may_be_present`, and
  :meth:`~cryptography.x509.verification.ExtensionPolicy.require_not_present`
  now accept any extension type. Previously only a fixed set of extension
  types was supported, which made it impossible to account for otherwise
  unrecognized critical extensions during path validation.
* Added support for using :class:`~cryptography.x509.Certificate`,
  :class:`~cryptography.x509.CertificateSigningRequest`, and
  :class:`~cryptography.x509.CertificateRevocationList` as field types in
  :doc:`/hazmat/asn1/index` structures.
* Added :func:`~cryptography.hazmat.asn1.value_set`, a class decorator that
</tr></table> 

... (truncated)

Commits

• e300bbe bump version and changelog for 49.0.0 (#15030)
• fa74cd8 Add external mu (message representative) support for ML-DSA (#14979)
• f594db3 chore(deps): bump openssl from 0.10.80 to 0.10.81 (#15029)
• 608e011 chore(deps): bump openssl-sys from 0.9.116 to 0.9.117 (#15028)
• a322bc4 chore(deps): bump cc from 1.2.63 to 1.2.64 (#15027)
• 33181a7 Reject critical nameConstraints extensions containing directoryName constrain...
• 6080dc7 Bump dependencies that dependabot isn't (#15026)
• 121faa3 chore(deps): bump virtualenv from 21.4.2 to 21.4.3 (#15023)
• 829520b Add more robust processing for DH parameters. (#15016)
• 0f05001 Bump downstream dependencies in CI (#15025)
• Additional commits viewable in compare view

Updates boto3 from 1.43.21 to 1.43.31

Commits

• 3aa219e Merge branch 'release-1.43.31'
• 9e371b9 Bumping version to 1.43.31
• 2037106 Add changelog entries from botocore
• db52ed3 Bump aws-actions/configure-aws-credentials in the github-actions group (#4797)
• 851f528 Merge branch 'release-1.43.30'
• 36d4549 Merge branch 'release-1.43.30' into develop
• 34755ed Bumping version to 1.43.30
• 7bdb952 Add changelog entries from botocore
• 3d3204c Merge branch 'release-1.43.29'
• 466b532 Merge branch 'release-1.43.29' into develop
• Additional commits viewable in compare view

Updates google-auth from 2.53.0 to 2.55.0

Release notes

Sourced from google-auth's releases.

google-auth: v2.55.0

v2.55.0 (2026-06-15)

Features

• make RAB feature production ready (#17390) (af193931)

Bug Fixes

• run async background boundary refresh on detached session (#17441) (56cbea85)

Commits

• 08a8f90 chore: librarian release pull request: 20260615T173024Z (#17468)
• 305f5bd test(auth): assert quota project header injection in google-auth tests (#17448)
• af19393 feat(auth): make RAB feature production ready (#17390)
• 00ec9bf chore: release bigframes v2.43.0 (#17460)
• f4945bd tests: fix compatibility with pytest 9.1.0 (#17465)
• 56cbea8 fix(rab): run async background boundary refresh on detached session (#17441)
• b50cf1a chore(google-auth): drop python 3.7 EOL false positives and refactor metrics ...
• 145034a fix: preserve aliases on cast columns and fix star selection in sqlglot (#173...
• dd59d36 chore: address pandas 3 failure and remove inherently flaky system test (#17452)
• 4d3447d chore: skip sqlalchemy-bigquery test to unblock CI (#17288)
• Additional commits viewable in compare view

Updates hcloud from 2.20.0 to 2.21.0

Release notes

Sourced from hcloud's releases.

v2.21.0

Features

• retry requests on api bad_gateway error (#658)

Changelog

Sourced from hcloud's changelog.

v2.21.0

Features

• retry requests on api bad_gateway error (#658)

Commits

• 32ea380 chore(main): release v2.21.0 (#659)
• 36f5302 feat: retry requests on api bad_gateway error (#658)
• 78301e0 chore(deps): pin dependencies (#655)
• d52319c chore: exclude dns migration links from checker (#657)
• cc39d44 chore(deps): update pre-commit hook psf/black-pre-commit-mirror to v26.5.1 (#...
• 7778d20 chore(deps): update dependency myst-parser to >=5,<5.2 (#653)
• 940a30f chore(deps): update dependency coverage to >=7.14,<7.15 (#652)
• 841dff9 chore(deps): update dependency mypy to v2 (#650)
• See full diff in compare view

Updates linode-api4 from 5.44.0 to 5.45.0

Release notes

Sourced from linode-api4's releases.

v5.45.0

What's Changed

📋 New Project

• Reserved IPv4 by @​lgarber-akamai in linode/linode_api4-python#706

🚀 New Features

• Implement support for Reserved IP for IPv4 by @​mgwoj in linode/linode_api4-python#672
• Update dev by @​mgwoj in linode/linode_api4-python#692
• Aclp logs support by @​sjer-akamai in linode/linode_api4-python#686
• Implement integration tests for ReservedIP for IPv4 by @​mawilk90 in linode/linode_api4-python#688

💡 Improvements

• Updating python sdk to include group_by at dashboard level by @​mawasthy-lgtm in linode/linode_api4-python#703

🧪 Testing Improvements

• Fix flaky tests by @​mawilk90 in linode/linode_api4-python#698
• Resolve failings tests blocking release by @​lgarber-akamai in linode/linode_api4-python#708

📖 Documentation

• ref: update monitor API docstring by @​shkaruna in linode/linode_api4-python#702

New Contributors

• @​sjer-akamai made their first contribution in linode/linode_api4-python#686
• @​mawasthy-lgtm made their first contribution in linode/linode_api4-python#703

Full Changelog: linode/linode_api4-python@v5.44.0...v5.45.0

Commits

• 76d6341 Merge pull request #705 from linode/dev
• 3ccfd56 TPT-4275: Resolve failings tests blocking release (#708)
• 898dbce Merge pull request #706 from linode/proj/reserved-ips
• 6431e68 Resolve conflicts
• 7af9400 TPT-4285: Implement integration tests for ReservedIP for IPv4 (#688)
• e12230d TPT-4443: Fix flaky tests (#698)
• cff502a ref: update monitor API docstring (#702)
• 1b1eaff Updating python sdk to include group_by at dashboard level (#703)
• 5e120f6 Aclp logs support (#686)
• 0ef2ee6 Merge pull request #692 from linode/dev
• Additional commits viewable in compare view

Updates openstacksdk from 4.14.0 to 4.16.0

Updates cs from 3.4.1 to 4.0.0

Release notes

Sourced from cs's releases.

v4.0.0

What's Changed

• migrate from pytz to zoneinfo by @​nullr0ute in ngine-io/cs#146
• Dropped Python 3.9 and Python 3.14 support added @​resmo in ngine-io/cs#151

New Contributors

• @​nullr0ute made their first contribution in ngine-io/cs#146

Full Changelog: ngine-io/cs@v3.4.1...v4.0.0

Alpha Release v4.0.0a1

[!WARNING]
Do not use for production

What's Changed

• migrate from pytz to zoneinfo by @​nullr0ute in ngine-io/cs#146
• Drop support of py3.9, add py3.14, use f-string, various minor improvements @​resmo in ngine-io/cs#151

New Contributors

• @​nullr0ute made their first contribution in ngine-io/cs#146

Full Changelog: ngine-io/cs@v3.4.1...v4.0.0a1

Commits

• 99d63c3 bump version
• ad60009 for 4.0.0 (#151)
• 5a95fad migrate from pytz to zoneinfo (#146)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions