From b919e9d9d055b0fda877104ae9a7213c5297c0b3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 10 Jan 2026 23:20:26 +0000
Subject: [PATCH 1/5] Bump pathspec from 1.0.2 to 1.0.3 (#11946)

Bumps [pathspec](https://github.com/cpburnz/python-pathspec) from 1.0.2
to 1.0.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cpburnz/python-pathspec/releases">pathspec's
releases</a>.</em></p>
<blockquote>
<h2>v1.0.3</h2>
<p>Release v1.0.3. See <a
href="https://github.com/cpburnz/python-pathspec/blob/v1.0.3/CHANGES.rst">CHANGES.rst</a>.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/cpburnz/python-pathspec/blob/master/CHANGES.rst">pathspec's
changelog</a>.</em></p>
<blockquote>
<h2>1.0.3 (2026-01-09)</h2>
<p>Bug fixes:</p>
<ul>
<li><code>Issue
[#101](https://github.com/cpburnz/python-pathspec/issues/101)</code>_:
pyright strict errors with pathspec &gt;= 1.0.0.</li>
<li><code>Issue
[#102](https://github.com/cpburnz/python-pathspec/issues/102)</code>_:
No module named 'tomllib'.</li>
</ul>
<p>.. _<code>Issue
[#101](https://github.com/cpburnz/python-pathspec/issues/101)</code>: <a
href="https://redirect.github.com/cpburnz/python-pathspec/issues/101">cpburnz/python-pathspec#101</a>
.. _<code>Issue
[#102](https://github.com/cpburnz/python-pathspec/issues/102)</code>: <a
href="https://redirect.github.com/cpburnz/python-pathspec/issues/102">cpburnz/python-pathspec#102</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/cpburnz/python-pathspec/commit/db3f54e78f68824f641b186bf4a749d944e2153f"><code>db3f54e</code></a>
Releasse v1.0.3</li>
<li><a
href="https://github.com/cpburnz/python-pathspec/commit/1b6bdda35a44cf48edc67a71d8020c26e84a40ec"><code>1b6bdda</code></a>
Releasse v1.0.3</li>
<li><a
href="https://github.com/cpburnz/python-pathspec/commit/f9b556abd5eebe94ec70404f5c386bf4451f5437"><code>f9b556a</code></a>
Fix docs</li>
<li><a
href="https://github.com/cpburnz/python-pathspec/commit/9867f1a954c68e8a4dc9cdcf8bfc5ad018a7951c"><code>9867f1a</code></a>
Fix tests</li>
<li><a
href="https://github.com/cpburnz/python-pathspec/commit/85cb3cc18bf925bef3b00b74a8b11049826c0129"><code>85cb3cc</code></a>
Fix docs</li>
<li><a
href="https://github.com/cpburnz/python-pathspec/commit/66281233ae20aa1de22345c1eb004dad9592b55d"><code>6628123</code></a>
Fix 101 regression</li>
<li>See full diff in <a
href="https://github.com/cpburnz/python-pathspec/compare/v1.0.2...v1.0.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pathspec&package-manager=pip&previous-version=1.0.2&new-version=1.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 requirements/test-common.txt | 2 +-
 requirements/test-ft.txt     | 2 +-
 requirements/test.txt        | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index a28f82a959e..46a626797ba 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -130,7 +130,7 @@ packaging==25.0
     #   pytest
     #   sphinx
     #   wheel
-pathspec==1.0.2
+pathspec==1.0.3
     # via mypy
 pip-tools==7.5.2
     # via -r requirements/dev.in
diff --git a/requirements/dev.txt b/requirements/dev.txt
index bfebee41c38..1b48b1be4df 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -127,7 +127,7 @@ packaging==25.0
     #   pytest
     #   sphinx
     #   wheel
-pathspec==1.0.2
+pathspec==1.0.3
     # via mypy
 pip-tools==7.5.2
     # via -r requirements/dev.in
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 168b923d67b..3f1c518eb99 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -57,7 +57,7 @@ nodeenv==1.10.0
     # via pre-commit
 packaging==25.0
     # via pytest
-pathspec==1.0.2
+pathspec==1.0.3
     # via mypy
 platformdirs==4.5.1
     # via virtualenv
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index ff2632f60f2..bb812c3c718 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -46,7 +46,7 @@ mypy-extensions==1.1.0
     # via mypy
 packaging==25.0
     # via pytest
-pathspec==1.0.2
+pathspec==1.0.3
     # via mypy
 pkgconfig==1.5.5
     # via -r requirements/test-common.in
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index f31e1a21888..7ec284dc5dc 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -73,7 +73,7 @@ packaging==25.0
     # via
     #   gunicorn
     #   pytest
-pathspec==1.0.2
+pathspec==1.0.3
     # via mypy
 pkgconfig==1.5.5
     # via -r requirements/test-common.in
diff --git a/requirements/test.txt b/requirements/test.txt
index c41462056bd..72d145f4543 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -73,7 +73,7 @@ packaging==25.0
     # via
     #   gunicorn
     #   pytest
-pathspec==1.0.2
+pathspec==1.0.3
     # via mypy
 pkgconfig==1.5.5
     # via -r requirements/test-common.in

From 3d074717b9790a011c8a5a22a8ed0b19177824da Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 10 Jan 2026 23:45:53 +0000
Subject: [PATCH 2/5] Bump aiodns from 3.6.1 to 4.0.0 (#11945)

Bumps [aiodns](https://github.com/saghul/aiodns) from 3.6.1 to 4.0.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/aio-libs/aiodns/blob/master/ChangeLog">aiodns's
changelog</a>.</em></p>
<blockquote>
<h1>4.0.0</h1>
<ul>
<li><strong>Breaking change</strong>: Requires pycares &gt;= 5.0.0</li>
<li>Added new <code>query_dns()</code> method returning native pycares
5.x <code>DNSResult</code> types</li>
<li>Deprecated <code>query()</code> method - still works with
backward-compatible result types</li>
<li>Deprecated <code>gethostbyname()</code> method - use
<code>getaddrinfo()</code> instead</li>
<li>Added compatibility layer for pycares 4.x result types to ease
migration</li>
<li>Updated dependencies
<ul>
<li>Bumped pycares from 4.11.0 to 5.0.1 (<a
href="https://redirect.github.com/saghul/aiodns/issues/220">#220</a>)</li>
<li>Bumped pytest from 8.4.2 to 9.0.2 (<a
href="https://redirect.github.com/saghul/aiodns/issues/224">#224</a>)</li>
<li>Bumped pytest-asyncio from 1.2.0 to 1.3.0 (<a
href="https://redirect.github.com/saghul/aiodns/issues/223">#223</a>)</li>
<li>Bumped mypy from 1.19.0 to 1.19.1 (<a
href="https://redirect.github.com/saghul/aiodns/issues/219">#219</a>)</li>
<li>Bumped winloop from 0.3.1 to 0.4.0 (<a
href="https://redirect.github.com/saghul/aiodns/issues/210">#210</a>)</li>
<li>Bumped actions/upload-artifact from 5 to 6 (<a
href="https://redirect.github.com/saghul/aiodns/issues/222">#222</a>)</li>
<li>Bumped actions/download-artifact from 6.0.0 to 7.0.0 (<a
href="https://redirect.github.com/saghul/aiodns/issues/221">#221</a>)</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/aio-libs/aiodns/commit/738b54fcec50912465eb73d5b61ef7289675fda7"><code>738b54f</code></a>
Release 4.0.0 (<a
href="https://redirect.github.com/saghul/aiodns/issues/225">#225</a>)</li>
<li><a
href="https://github.com/aio-libs/aiodns/commit/98c1db84de9d6597ae5cbd1c98eea5ebbd5c0f2e"><code>98c1db8</code></a>
Bump pytest from 8.4.2 to 9.0.2 (<a
href="https://redirect.github.com/saghul/aiodns/issues/224">#224</a>)</li>
<li><a
href="https://github.com/aio-libs/aiodns/commit/d32e6da349d958dd73428f273ca6bd6182a908b1"><code>d32e6da</code></a>
Bump pytest-asyncio from 1.2.0 to 1.3.0 (<a
href="https://redirect.github.com/saghul/aiodns/issues/223">#223</a>)</li>
<li><a
href="https://github.com/aio-libs/aiodns/commit/85776406ef44b6c83dedec55e7a33746f0cc46b1"><code>8577640</code></a>
Bump pycares from 4.11.0 to 5.0.1 (<a
href="https://redirect.github.com/saghul/aiodns/issues/220">#220</a>)</li>
<li><a
href="https://github.com/aio-libs/aiodns/commit/2a65ab2110d0abea6dc71ddd525ad20e79bf02aa"><code>2a65ab2</code></a>
Add pycares 5.0 support with backward-compatible result types (<a
href="https://redirect.github.com/saghul/aiodns/issues/218">#218</a>)</li>
<li><a
href="https://github.com/aio-libs/aiodns/commit/0fd88aa6ceeb35be2ee45b0767511425bf7b1cde"><code>0fd88aa</code></a>
Bump actions/upload-artifact from 5 to 6 (<a
href="https://redirect.github.com/saghul/aiodns/issues/222">#222</a>)</li>
<li><a
href="https://github.com/aio-libs/aiodns/commit/2d26acefc0e1e79e4ae60a2867e0f4c8b2038cd7"><code>2d26ace</code></a>
Bump actions/download-artifact from 6.0.0 to 7.0.0 (<a
href="https://redirect.github.com/saghul/aiodns/issues/221">#221</a>)</li>
<li><a
href="https://github.com/aio-libs/aiodns/commit/c2d2c9ef781c26ff6611126e3c6dacc14680bf23"><code>c2d2c9e</code></a>
Bump mypy from 1.19.0 to 1.19.1 (<a
href="https://redirect.github.com/saghul/aiodns/issues/219">#219</a>)</li>
<li>See full diff in <a
href="https://github.com/saghul/aiodns/compare/v3.6.1...v4.0.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aiodns&package-manager=pip&previous-version=3.6.1&new-version=4.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: J. Nick Koston <nick@home-assistant.io>
---
 aiohttp/resolver.py           | 7 +++----
 requirements/base-ft.txt      | 4 ++--
 requirements/base.txt         | 4 ++--
 requirements/constraints.txt  | 4 ++--
 requirements/dev.txt          | 4 ++--
 requirements/lint.txt         | 4 ++--
 requirements/runtime-deps.txt | 4 ++--
 requirements/test-ft.txt      | 4 ++--
 requirements/test.txt         | 4 ++--
 9 files changed, 19 insertions(+), 20 deletions(-)

diff --git a/aiohttp/resolver.py b/aiohttp/resolver.py
index 8840a1ca3e1..d29ffff1d95 100644
--- a/aiohttp/resolver.py
+++ b/aiohttp/resolver.py
@@ -118,8 +118,7 @@ async def resolve(
         hosts: list[ResolveResult] = []
         for node in resp.nodes:
             address: tuple[bytes, int] | tuple[bytes, int, int, int] = node.addr
-            family = node.family
-            if family == socket.AF_INET6:
+            if node.family == socket.AF_INET6:
                 if len(address) > 3 and address[3]:
                     # This is essential for link-local IPv6 addresses.
                     # LL IPv6 is a VERY rare case. Strictly speaking, we should use
@@ -133,7 +132,7 @@ async def resolve(
                     resolved_host = address[0].decode("ascii")
                     port = address[1]
             else:  # IPv4
-                assert family == socket.AF_INET
+                assert node.family == socket.AF_INET
                 resolved_host = address[0].decode("ascii")
                 port = address[1]
             hosts.append(
@@ -141,7 +140,7 @@ async def resolve(
                     hostname=host,
                     host=resolved_host,
                     port=port,
-                    family=family,
+                    family=node.family,
                     proto=0,
                     flags=_NUMERIC_SOCKET_FLAGS,
                 )
diff --git a/requirements/base-ft.txt b/requirements/base-ft.txt
index a9346182f20..f702a7cf0bd 100644
--- a/requirements/base-ft.txt
+++ b/requirements/base-ft.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/base-ft.txt --strip-extras requirements/base-ft.in
 #
-aiodns==3.6.1
+aiodns==4.0.0
     # via -r requirements/runtime-deps.in
 aiohappyeyeballs==2.6.1
     # via -r requirements/runtime-deps.in
@@ -36,7 +36,7 @@ propcache==0.4.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
-pycares==4.11.0
+pycares==5.0.1
     # via aiodns
 pycparser==2.23
     # via cffi
diff --git a/requirements/base.txt b/requirements/base.txt
index cbf92ac9b66..94528a3f74a 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/base.txt --strip-extras requirements/base.in
 #
-aiodns==3.6.1
+aiodns==4.0.0
     # via -r requirements/runtime-deps.in
 aiohappyeyeballs==2.6.1
     # via -r requirements/runtime-deps.in
@@ -36,7 +36,7 @@ propcache==0.4.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
-pycares==4.11.0
+pycares==5.0.1
     # via aiodns
 pycparser==2.23
     # via cffi
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 46a626797ba..8a7330d8c2f 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/constraints.txt --strip-extras requirements/constraints.in
 #
-aiodns==3.6.1
+aiodns==4.0.0
     # via
     #   -r requirements/lint.in
     #   -r requirements/runtime-deps.in
@@ -152,7 +152,7 @@ proxy-py==2.4.10
     # via
     #   -r requirements/lint.in
     #   -r requirements/test-common.in
-pycares==4.11.0
+pycares==5.0.1
     # via aiodns
 pycparser==2.23
     # via cffi
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 1b48b1be4df..4ddefc54719 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/dev.txt --strip-extras requirements/dev.in
 #
-aiodns==3.6.1
+aiodns==4.0.0
     # via
     #   -r requirements/lint.in
     #   -r requirements/runtime-deps.in
@@ -149,7 +149,7 @@ proxy-py==2.4.10
     # via
     #   -r requirements/lint.in
     #   -r requirements/test-common.in
-pycares==4.11.0
+pycares==5.0.1
     # via aiodns
 pycparser==2.23
     # via cffi
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 3f1c518eb99..3903809e999 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/lint.txt --strip-extras requirements/lint.in
 #
-aiodns==3.6.1
+aiodns==4.0.0
     # via -r requirements/lint.in
 annotated-types==0.7.0
     # via pydantic
@@ -67,7 +67,7 @@ pre-commit==4.5.1
     # via -r requirements/lint.in
 proxy-py==2.4.10
     # via -r requirements/lint.in
-pycares==4.11.0
+pycares==5.0.1
     # via aiodns
 pycparser==2.23
     # via cffi
diff --git a/requirements/runtime-deps.txt b/requirements/runtime-deps.txt
index eb0434c07bc..b2a455559ce 100644
--- a/requirements/runtime-deps.txt
+++ b/requirements/runtime-deps.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/runtime-deps.txt --strip-extras requirements/runtime-deps.in
 #
-aiodns==3.6.1
+aiodns==4.0.0
     # via -r requirements/runtime-deps.in
 aiohappyeyeballs==2.6.1
     # via -r requirements/runtime-deps.in
@@ -32,7 +32,7 @@ propcache==0.4.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
-pycares==4.11.0
+pycares==5.0.1
     # via aiodns
 pycparser==2.23
     # via cffi
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 7ec284dc5dc..ebffb307670 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/test-ft.txt --strip-extras requirements/test-ft.in
 #
-aiodns==3.6.1
+aiodns==4.0.0
     # via -r requirements/runtime-deps.in
 aiohappyeyeballs==2.6.1
     # via -r requirements/runtime-deps.in
@@ -87,7 +87,7 @@ propcache==0.4.1
     #   yarl
 proxy-py==2.4.10
     # via -r requirements/test-common.in
-pycares==4.11.0
+pycares==5.0.1
     # via aiodns
 pycparser==2.23
     # via cffi
diff --git a/requirements/test.txt b/requirements/test.txt
index 72d145f4543..0f18ecb5362 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/test.txt --strip-extras requirements/test.in
 #
-aiodns==3.6.1
+aiodns==4.0.0
     # via -r requirements/runtime-deps.in
 aiohappyeyeballs==2.6.1
     # via -r requirements/runtime-deps.in
@@ -87,7 +87,7 @@ propcache==0.4.1
     #   yarl
 proxy-py==2.4.10
     # via -r requirements/test-common.in
-pycares==4.11.0
+pycares==5.0.1
     # via aiodns
 pycparser==2.23
     # via cffi

From e306f5e0ad4bd3702b9241345cebfe85819e63d2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 10 Jan 2026 23:51:15 +0000
Subject: [PATCH 3/5] Bump python-on-whales from 0.79.0 to 0.80.0 (#11948)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps
[python-on-whales](https://github.com/gabrieldemarmiesse/python-on-whales)
from 0.79.0 to 0.80.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/gabrieldemarmiesse/python-on-whales/releases">python-on-whales's
releases</a>.</em></p>
<blockquote>
<h2>v0.80.0</h2>
<h2>What's Changed</h2>
<ul>
<li>feat: add support for buildx create --annotations flag by <a
href="https://github.com/bo0tzz"><code>@​bo0tzz</code></a> in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/690">gabrieldemarmiesse/python-on-whales#690</a></li>
<li>Add 'pull' argument to compose.create by <a
href="https://github.com/g-arjones"><code>@​g-arjones</code></a> in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/691">gabrieldemarmiesse/python-on-whales#691</a></li>
<li>Add --with-dependencies to compose build by <a
href="https://github.com/perrito666"><code>@​perrito666</code></a> in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/694">gabrieldemarmiesse/python-on-whales#694</a></li>
<li>Add unconditional debug level logging by <a
href="https://github.com/Hasnainz"><code>@​Hasnainz</code></a> in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/696">gabrieldemarmiesse/python-on-whales#696</a></li>
<li>fix: missing ipam_config in NetworkInspectResult by <a
href="https://github.com/Quenary"><code>@​Quenary</code></a> in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/700">gabrieldemarmiesse/python-on-whales#700</a></li>
<li>Add another test for buildx secrets by <a
href="https://github.com/Felixoid"><code>@​Felixoid</code></a> in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/651">gabrieldemarmiesse/python-on-whales#651</a></li>
<li>Add --service-ports flag to compose.run by <a
href="https://github.com/perrito666"><code>@​perrito666</code></a> in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/701">gabrieldemarmiesse/python-on-whales#701</a></li>
<li>Add support for <code>--metadata-file</code> option with buildx bake
by <a
href="https://github.com/ianpittwood"><code>@​ianpittwood</code></a> in
<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/693">gabrieldemarmiesse/python-on-whales#693</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/bo0tzz"><code>@​bo0tzz</code></a> made
their first contribution in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/690">gabrieldemarmiesse/python-on-whales#690</a></li>
<li><a href="https://github.com/g-arjones"><code>@​g-arjones</code></a>
made their first contribution in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/691">gabrieldemarmiesse/python-on-whales#691</a></li>
<li><a
href="https://github.com/perrito666"><code>@​perrito666</code></a> made
their first contribution in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/694">gabrieldemarmiesse/python-on-whales#694</a></li>
<li><a href="https://github.com/Hasnainz"><code>@​Hasnainz</code></a>
made their first contribution in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/696">gabrieldemarmiesse/python-on-whales#696</a></li>
<li><a href="https://github.com/Quenary"><code>@​Quenary</code></a> made
their first contribution in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/700">gabrieldemarmiesse/python-on-whales#700</a></li>
<li><a href="https://github.com/Felixoid"><code>@​Felixoid</code></a>
made their first contribution in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/651">gabrieldemarmiesse/python-on-whales#651</a></li>
<li><a
href="https://github.com/ianpittwood"><code>@​ianpittwood</code></a>
made their first contribution in <a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/pull/693">gabrieldemarmiesse/python-on-whales#693</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/gabrieldemarmiesse/python-on-whales/compare/v0.79.0...v0.80.0">https://github.com/gabrieldemarmiesse/python-on-whales/compare/v0.79.0...v0.80.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/ee87a947f0e18a86cee76f11765fd1779a431bca"><code>ee87a94</code></a>
Bump version to 0.80.0</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/12efa4677e7a6f48cdafd919e4cfcd157da74863"><code>12efa46</code></a>
Add support for <code>--metadata-file</code> option with buildx bake (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/693">#693</a>)</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/6dfcce4243bf6cf17d0bf30eb5458029f949bad0"><code>6dfcce4</code></a>
Add --service-ports flag to compose.run (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/701">#701</a>)</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/fde7e12361037255f93ef92833a53a601a33ce7b"><code>fde7e12</code></a>
Use the trusted publisher system of pypi (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/702">#702</a>)</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/511ca7316e13f7d5ed232bd2593f664357c8976b"><code>511ca73</code></a>
Add another test for buildx secrets (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/651">#651</a>)</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/5c697f982073a58fabb34034836ec3bad2d81f98"><code>5c697f9</code></a>
fix: missing ipam_config in NetworkInspectResult (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/700">#700</a>)</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/6423af2a2b04ae1f0688e9c34a49ae43dccdd3c2"><code>6423af2</code></a>
Add unconditional debug level logging (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/696">#696</a>)</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/30068c8971cfd2277cfbd5bd19516984b5b2ee9e"><code>30068c8</code></a>
Add --with-dependencies to compose build (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/694">#694</a>)</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/dd061b3c7fa50dab4f808e9c590ab80968a66180"><code>dd061b3</code></a>
Add 'pull' argument to compose.create (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/691">#691</a>)</li>
<li><a
href="https://github.com/gabrieldemarmiesse/python-on-whales/commit/1c681d788ce3409647368faf776b4134dca8ae49"><code>1c681d7</code></a>
feat: add support for buildx create --annotations flag (<a
href="https://redirect.github.com/gabrieldemarmiesse/python-on-whales/issues/690">#690</a>)</li>
<li>See full diff in <a
href="https://github.com/gabrieldemarmiesse/python-on-whales/compare/v0.79.0...v0.80.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=python-on-whales&package-manager=pip&previous-version=0.79.0&new-version=0.80.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 requirements/test-common.txt | 2 +-
 requirements/test-ft.txt     | 2 +-
 requirements/test.txt        | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 8a7330d8c2f..0e7855fe3c9 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -193,7 +193,7 @@ pytest-xdist==3.8.0
     # via -r requirements/test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
-python-on-whales==0.79.0
+python-on-whales==0.80.0
     # via
     #   -r requirements/lint.in
     #   -r requirements/test-common.in
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 4ddefc54719..0361468c122 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -188,7 +188,7 @@ pytest-xdist==3.8.0
     # via -r requirements/test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
-python-on-whales==0.79.0
+python-on-whales==0.80.0
     # via
     #   -r requirements/lint.in
     #   -r requirements/test-common.in
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 3903809e999..703a2bb4757 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -90,7 +90,7 @@ pytest-mock==3.15.1
     # via -r requirements/lint.in
 python-dateutil==2.9.0.post0
     # via freezegun
-python-on-whales==0.79.0
+python-on-whales==0.80.0
     # via -r requirements/lint.in
 pyyaml==6.0.3
     # via pre-commit
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index bb812c3c718..7ebd1418502 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -83,7 +83,7 @@ pytest-xdist==3.8.0
     # via -r requirements/test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
-python-on-whales==0.79.0
+python-on-whales==0.80.0
     # via -r requirements/test-common.in
 rich==14.2.0
     # via pytest-codspeed
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index ebffb307670..f8f2bf5db44 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -116,7 +116,7 @@ pytest-xdist==3.8.0
     # via -r requirements/test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
-python-on-whales==0.79.0
+python-on-whales==0.80.0
     # via -r requirements/test-common.in
 rich==14.2.0
     # via pytest-codspeed
diff --git a/requirements/test.txt b/requirements/test.txt
index 0f18ecb5362..6215d3e8d28 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -116,7 +116,7 @@ pytest-xdist==3.8.0
     # via -r requirements/test-common.in
 python-dateutil==2.9.0.post0
     # via freezegun
-python-on-whales==0.79.0
+python-on-whales==0.80.0
     # via -r requirements/test-common.in
 rich==14.2.0
     # via pytest-codspeed

From 7a7f7af0ca84c4e89e8c6b2e8286175a50b96d89 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 11 Jan 2026 00:15:40 +0000
Subject: [PATCH 4/5] Bump filelock from 3.20.2 to 3.20.3 (#11954)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [filelock](https://github.com/tox-dev/py-filelock) from 3.20.2 to
3.20.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/tox-dev/py-filelock/releases">filelock's
releases</a>.</em></p>
<blockquote>
<h2>3.20.3</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<ul>
<li>Fix TOCTOU symlink vulnerability in SoftFileLock by <a
href="https://github.com/gaborbernat"><code>@​gaborbernat</code></a> in
<a
href="https://redirect.github.com/tox-dev/filelock/pull/465">tox-dev/filelock#465</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/tox-dev/filelock/compare/3.20.2...3.20.3">https://github.com/tox-dev/filelock/compare/3.20.2...3.20.3</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/tox-dev/filelock/commit/41b42dd2c72aecf7da83dbda5903b8087dddc4d5"><code>41b42dd</code></a>
Fix TOCTOU symlink vulnerability in SoftFileLock (<a
href="https://redirect.github.com/tox-dev/py-filelock/issues/465">#465</a>)</li>
<li>See full diff in <a
href="https://github.com/tox-dev/py-filelock/compare/3.20.2...3.20.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=filelock&package-manager=pip&previous-version=3.20.2&new-version=3.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 0e7855fe3c9..95647942b31 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -69,7 +69,7 @@ exceptiongroup==1.3.1
     # via pytest
 execnet==2.1.2
     # via pytest-xdist
-filelock==3.20.2
+filelock==3.20.3
     # via virtualenv
 forbiddenfruit==0.1.4
     # via blockbuster
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 0361468c122..6aa1b1697fc 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -67,7 +67,7 @@ exceptiongroup==1.3.1
     # via pytest
 execnet==2.1.2
     # via pytest-xdist
-filelock==3.20.2
+filelock==3.20.3
     # via virtualenv
 forbiddenfruit==0.1.4
     # via blockbuster
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 703a2bb4757..804fb9072ad 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -29,7 +29,7 @@ distlib==0.4.0
     # via virtualenv
 exceptiongroup==1.3.1
     # via pytest
-filelock==3.20.2
+filelock==3.20.3
     # via virtualenv
 forbiddenfruit==0.1.4
     # via blockbuster

From de258a16823377ec9040e8daff06b328254cf71f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 11 Jan 2026 00:35:46 +0000
Subject: [PATCH 5/5] Bump virtualenv from 20.36.0 to 20.36.1 (#11951)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [virtualenv](https://github.com/pypa/virtualenv) from 20.36.0 to
20.36.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/virtualenv/releases">virtualenv's
releases</a>.</em></p>
<blockquote>
<h2>20.36.1</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<ul>
<li>release 20.36.0 by <a
href="https://github.com/gaborbernat"><code>@​gaborbernat</code></a> in
<a
href="https://redirect.github.com/pypa/virtualenv/pull/3011">pypa/virtualenv#3011</a></li>
<li>fix: resolve TOCTOU vulnerabilities in app_data and lock directory
creation by <a
href="https://github.com/gaborbernat"><code>@​gaborbernat</code></a> in
<a
href="https://redirect.github.com/pypa/virtualenv/pull/3013">pypa/virtualenv#3013</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/pypa/virtualenv/compare/20.36.0...20.36.1">https://github.com/pypa/virtualenv/compare/20.36.0...20.36.1</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst">virtualenv's
changelog</a>.</em></p>
<blockquote>
<h2>v20.36.1 (2026-01-09)</h2>
<p>Bugfixes - 20.36.1</p>
<pre><code>- Fix TOCTOU vulnerabilities in app_data and lock directory
creation that could be exploited via symlink attacks - reported by
:user:`tsigouris007`, fixed by :user:`gaborbernat`. (:issue:`3013`)
</code></pre>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pypa/virtualenv/commit/d0ad11d1146e81ea74d2461be9653f1da9cf3fd1"><code>d0ad11d</code></a>
release 20.36.1</li>
<li><a
href="https://github.com/pypa/virtualenv/commit/dec4cec5d16edaf83a00a658f32d1e032661cebc"><code>dec4cec</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/virtualenv/issues/3013">#3013</a>
from gaborbernat/fix-sec</li>
<li><a
href="https://github.com/pypa/virtualenv/commit/5fe5d38beb1273b489591a7b444f1018af2edf0a"><code>5fe5d38</code></a>
release 20.36.0 (<a
href="https://redirect.github.com/pypa/virtualenv/issues/3011">#3011</a>)</li>
<li>See full diff in <a
href="https://github.com/pypa/virtualenv/compare/20.36.0...20.36.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=virtualenv&package-manager=pip&previous-version=20.36.0&new-version=20.36.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 95647942b31..37a06e28ec4 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -275,7 +275,7 @@ uvloop==0.21.0 ; platform_system != "Windows"
     #   -r requirements/lint.in
 valkey==6.1.1
     # via -r requirements/lint.in
-virtualenv==20.36.0
+virtualenv==20.36.1
     # via pre-commit
 wait-for-it==2.3.0
     # via -r requirements/test-common.in
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 6aa1b1697fc..caec288a434 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -265,7 +265,7 @@ uvloop==0.21.0 ; platform_system != "Windows" and implementation_name == "cpytho
     #   -r requirements/lint.in
 valkey==6.1.1
     # via -r requirements/lint.in
-virtualenv==20.36.0
+virtualenv==20.36.1
     # via pre-commit
 wait-for-it==2.3.0
     # via -r requirements/test-common.in
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 804fb9072ad..3c6a87dc9e4 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -123,7 +123,7 @@ uvloop==0.21.0 ; platform_system != "Windows"
     # via -r requirements/lint.in
 valkey==6.1.1
     # via -r requirements/lint.in
-virtualenv==20.36.0
+virtualenv==20.36.1
     # via pre-commit
 zlib-ng==1.0.0
     # via -r requirements/lint.in