Bump the python group with 2 updates

[dependabot]

Bumps the python group with 2 updates: prek and tox.

Updates prek from 0.3.4 to 0.3.5

Release notes

Sourced from prek's releases.

0.3.5

Release Notes

Released on 2026-03-09.

Enhancements

• Add automatic Ruby download support using rv binaries (#1668)
• Adjust open file limit on process startup (#1705)
• Allow parallel gem retry (#1732)
• Enable system-proxy feature on reqwest (#1738)
• Expose --git-dir to force hook installation target (#1723)
• Pass --quiet, --verbose, and --no-progress through prek install into generated hook scripts (#1753)
• Respect core.sharedRepository for hook permissions (#1755)
• Support legacy mode hook script (#1706)
• rust: support cli: git dependency 4th segment package disambiguation (#1747)

Bug fixes

• Fix Python __main__.py entry (#1741)
• python: strip UV_SYSTEM_PYTHON from uv venv and pip install commands (#1756)

Other changes

• Sync latest identify tags (#1733)

Contributors

• @​Dev-iL
• @​tennox
• @​shaanmajid
• @​is-alnilam
• @​github-actions
• @​j178

Install prek 0.3.5

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/j178/prek/releases/download/v0.3.5/prek-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/j178/prek/releases/download/v0.3.5/prek-installer.ps1 | iex"

Install prebuilt binaries via Homebrew

... (truncated)

Changelog

Sourced from prek's changelog.

0.3.5

Released on 2026-03-09.

Enhancements

• Add automatic Ruby download support using rv binaries (#1668)
• Adjust open file limit on process startup (#1705)
• Allow parallel gem retry (#1732)
• Enable system-proxy feature on reqwest (#1738)
• Expose --git-dir to force hook installation target (#1723)
• Pass --quiet, --verbose, and --no-progress through prek install into generated hook scripts (#1753)
• Respect core.sharedRepository for hook permissions (#1755)
• Support legacy mode hook script (#1706)
• rust: support cli: git dependency 4th segment package disambiguation (#1747)

Bug fixes

• Fix Python __main__.py entry (#1741)
• python: strip UV_SYSTEM_PYTHON from uv venv and pip install commands (#1756)

Other changes

• Sync latest identify tags (#1733)

Contributors

• @​Dev-iL
• @​tennox
• @​shaanmajid
• @​is-alnilam
• @​github-actions
• @​j178

Commits

• 46cb7ba Bump version to 0.3.5 (#1760)
• 3cd9382 Fix GHC cache dir on Windows (#1759)
• c8ef5f9 Improve benchmark script (#1758)
• e6344fc Add a workflow for hyperfine benchmarks (#1304)
• 423e847 Respect core.sharedRepository for hook permissions (#1755)
• 80d0806 python: strip UV_SYSTEM_PYTHON from uv venv and pip install commands (#...
• b452914 Manage Rust toolchain and MSRV in renovate (#1757)
• 7c6c30e Bump actions versions (#1752)
• 73a55a4 Don't use native TLS backend (#1754)
• 8501ccb Pass --quiet, --verbose, and --no-progress through prek install into ...
• Additional commits viewable in compare view

Updates tox from 4.48.1 to 4.49.0

Release notes

Sourced from tox's releases.

v4.49.0

What's Changed

• ✨ feat(config): add {factor:label} substitution for TOML by @​gaborbernat in tox-dev/tox#3865
• 🐛 fix(legacy): initialize config_format and output_file for --showconfig by @​rares985 in tox-dev/tox#3867

New Contributors

• @​rares985 made their first contribution in tox-dev/tox#3867

Full Changelog: tox-dev/tox@4.48.1...4.49.0

Changelog

Sourced from tox's changelog.

Features - 4.49.0

• Add {factor:label} substitution for TOML configs -- factor groups in product matrices and env_base factors can now be labeled with single-key dicts (e.g., {ecosystem = ["oci", "python"]}), enabling {factor:ecosystem} in any string value (descriptions, commands, etc.) to resolve to the active factor. Plain lists automatically get positional labels ({factor:0}, {factor:1}, ...) - by :user:gaborbernat. (:issue:3860) (:issue:3860)

Bug fixes - 4.49.0

• Fix --showconfig and --help-ini legacy flags raising AttributeError after config format options were added
  • by :user:rares985 (:issue:3866)

---

v4.48.1 (2026-03-06)

---

Commits

• 6c452bb release 4.49.0
• 1c59d54 🐛 fix(legacy): initialize config_format and output_file for --showconfig (#3867)
• 2382601 ✨ feat(config): add {factor:label} substitution for TOML (#3865)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.