chore(deps): update python dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
matplotlib	>=3.10.7 → >=3.10.8
nb-cli	>=1.5.0 → >=1.6.0
nonebot-adapter-satori	>=0.13.7 → >=0.13.8
nonebot-plugin-alconna	>=0.60.3 → >=0.60.4
nonebot-plugin-orm	>=0.8.2 → >=0.8.3
nonebot-plugin-parser	==2.2.2 → ==2.3.7
pydantic (changelog)	>=2.12.4 → >=2.12.5
uvicorn (changelog)	>=0.38.0 → >=0.40.0

---

Release Notes

matplotlib/matplotlib (matplotlib)

v3.10.8: REL: v3.10.8

Compare Source

This is a bugfix release in the 3.10.x series.

The primary highlights of this release are:

• Properly allow freethreaded mode in the MacOS backend
• Better error handling for MacOS backend

nonebot/nb-cli (nb-cli)

v1.6.0

Compare Source

NB-CLI 1.6.0 ❄️☃️🏡🍲🥟🧣

What's Changed

Breaking changes:

• Dev: 升级项目到 Python 3.10 by @​NCBM in #​167

Bug fixes:

• Fix: 修复 setdefault 导致无法匹配空配置的问题 by @​NCBM in #​164
• Fix: 重构并修复升级/降级项目格式时总是使用全局配置的问题 by @​NCBM in #​169
• Fix: 修复未妥善处理 Pydantic v1 兼容导致文档中无法加载 Python 模块的问题 by @​he0119 in #​179

New features:

• Feature: 添加获取当前已安装适配器和插件的功能支持 by @​NCBM in #​171
  • nb adapter list 和 nb plugin list 现在支持 --installed 选项以列出当前已安装的适配器或插件；
  • nb adapter install 和 nb plugin install 的交互模式现在可以自动排除已安装的适配器或插件；
  • nb adapter update nb adapter uninstall nb plugin update nb plugin uninstall 的交互模式现在可以自动筛选当前已安装的适配器或插件。
• Feature: 支持在当前文件夹原地创建项目 by @​NCBM in #​173
  • 项目名称为 . 时自动原地创建项目；
  • 可能覆盖文件时要求再次确认；
• Feature: 添加按插件类型的搜索过滤器 by @​NCBM in #​174
  • 高级搜索支持 #type:application #type:library #type:unknown 及对应逆过滤器；
  • type 过滤器支持部分匹配；
• Feature: 创建项目时允许选择官方插件 by @​NCBM in #​175

Other changes:

• Refactor: 硬编码 NoneBot LOGO 并移除 pyfiglet 依赖 by @​NCBM in #​170
• Feature: 重构依赖管理部分以支持 extras 等依赖信息的精细管理 by @​NCBM in #​177

Full Changelog: nonebot/nb-cli@v1.5.0...v1.6.0

nonebot/adapter-satori (nonebot-adapter-satori)

v0.13.8: Adapter Satori 0.13.8

Compare Source

What's Changed

• 修复 quote 里的 author 标签被忽略的问题 by @​su226 in #​45

New Contributors

• @​su226 made their first contribution in #​45

Full Changelog: nonebot/adapter-satori@v0.13.7...v0.13.8

nonebot/plugin-alconna (nonebot-plugin-alconna)

v0.60.4: Nonebot Plugin Alconna 0.60.4

Compare Source

What's Changed

• ⬆️ Bump actions/checkout from 5 to 6 by @​dependabot[bot] in #​125
• 🐛 fix: Unimessage.Template receive multiple values by @​GuGuMur in #​124
• Fix typo in README by @​Wesley-Young in #​127

New Contributors

• @​GuGuMur made their first contribution in #​124
• @​Wesley-Young made their first contribution in #​127

Full Changelog: nonebot/plugin-alconna@v0.60.3...v0.60.4

nonebot/plugin-orm (nonebot-plugin-orm)

v0.8.3: 🔖 Release 0.8.3

Compare Source

What's Changed

• 🐛 fix(alembic): dispose engine
  此修复改动了模板中的 env.py. 对于初始化脚本目录后使用的用户, 需要对 env.py 应用如下更改:

单数据库模板 (generic)

--- a/migrations/env.py
+++ b/migrations/env.py
@​@​ -70,6 +70,8 @​@​ async def run_migrations_online() -> None:
     async with engine.connect() as connection:
         await connection.run_sync(do_run_migrations)

+    await engine.dispose()
+

 if context.is_offline_mode():
     run_migrations_offline()

多数据库模板 (multidb)

--- a/nonebot_plugin_orm/templates/multidb/env.py
+++ b/nonebot_plugin_orm/templates/multidb/env.py
@​@​ -113,6 +113,7 @​@​ async def run_migrations_online() -> None:
         raise
     finally:
         await asyncio.gather(*(conn.close() for conn in conns.values()))
+        await asyncio.gather(*(engine.dispose() for engine in engines.values()))

 if context.is_offline_mode():

Full Changelog: nonebot/plugin-orm@v0.8.2...v0.8.3

fllesser/nonebot-plugin-parser (nonebot-plugin-parser)

v2.3.7

Compare Source

🚀 Features

• feat(config): 添加 parser_xhs_ck ，用于 explore 链接无水印解析 @​fllesser (#​441)

🐛 Bug Fixes

• fix(xiaohongshu): when parse_explore failed, fallback to parse_discovery @​fllesser (#​435)

💫 Others

• perf: 优化微博 show 解析 @​fllesser (#​436)

v2.3.6

Compare Source

Happy new year 🌈

🚀 Features

• refactor: preload msgsepc decoder and refactor acfun parser @​fllesser (#​430)
• feat: 增强 Acfun 解析 @​fllesser (#​430)

🐛 Bug Fixes

• fix: 弃用 parse_read (老版专栏网页已凉) @​fllesser (#​428)
• fix: 完善 weibo.cn 正则 @​fllesser (#​424)

💫 Others

• chore(deps): upgrade bilibili-api-python and ignore curl_cffi 0.14.0 @​fllesser (#​432)
• perf: 简化 youtube 和 tiktok 正则 @​fllesser (#​431)

v2.3.5

Compare Source

💫 Others

• refactor: use bbox instead of getlength to get char width @​fllesser (#​423)

v2.3.4

Compare Source

🚀 Features

• feat: add HTML renderer with Jinja2 templating and associated tests. @​fllesser (#​419)
• feat(render): enhance default renderer display experience @​fllesser (#​417)

🐛 Bug Fixes

• fix: enable parsing of m.weibo.cn URLs with alphanumeric video id @​fllesser (#​420)

💫 Others

• chore(deps): upgrade yt-dlp >= 2025.12.8 @​fllesser (#​422)
• chore(deps): upgrade apilmoji 0.2.4 and emosvg 0.1.6 @​fllesser (#​421)
• ci: deprecate codecov/test-results-action @​fllesser (#​418)

v2.3.3

Compare Source

🚀 Features

• feat: add emosvg optional deps to render emoji @​fllesser (#​414)

🐛 Bug Fixes

• refactor: use emoji grapheme clustering for line break algorithm @​fllesser (#​415)
• fix: 修复小程序卡片链接的提取 @​fllesser (#​413)

💫 Others

• refactor: is_super_private should use permission instead of rule @​fllesser (#​412)

v2.3.2

Compare Source

💫 Others

• chore(perm): 限制 blogin 命令仅限 superuser 私聊使用 @​fllesser (#​411)

v2.3.1

Compare Source

🚀 Features

• feat(bilibili): support bilibili qrcode login to get credential @​fllesser (#​408)

💫 Others

• chore(deps): upgrade yt-dlp >=2025.12.8 @​fllesser (#​410)
• chore(deps): update apilmoji 0.2.1 and ignore pydantic-v1 update for renovate @​fllesser (#​406)
• chore(deps): upgrade apimoji>=0.2.0 @​fllesser (#​403)

v2.3.0

Compare Source

更换 emoji 渲染上游 apilmoji

🚀 Features

• perf: enhance rendering multiline text which contains emoji @​fllesser (#​402)

v2.2.5

Compare Source

🚀 Features

• feat(render): update pilmoji-for-parser[tqdm] 0.2.0, and add parser_emoji_cdn config @​fllesser (#​401)

🐛 Bug Fixes

• fix: correct f-string interpolation for pconfig.max_size in download size limit warning.

v2.2.4

Compare Source

🐛 Bug Fixes

• 更新上游 pilmoji-for-parser 以修复文字间距问题
• chore(deps): upgrade pilmoji-for-parser>=0.1.3 @​fllesser (#​400)

v2.2.3

Compare Source

添加配置项 parser_emoji_style 详见 Readme

🚀 Features

• perf(render): enhance rendering emoij @​fllesser (#​399)

💫 Others

• chore(test): Add pytest.mark.asyncio to all async tests @​fllesser (#​398)
• ⬆️ auto update by pre-commit hooks @​pre-commit-ci[bot] (#​397)
• chore: remove taplo-pre-commit @​fllesser (#​396)
• chore: add taplo-pre-commit and format toml file @​fllesser (#​395)
• refactor: Apply code formatting and add types-yt-dlp for improved type hinting. @​fllesser (#​394)
• chore(deps): update nonebug to a git source @​fllesser (#​393)
• chore(deps): update nonebug to a git source and pytest to version 9.0.1. @​fllesser (#​392)
• chore(docs): update readme and classifiers @​fllesser (#​390)

pydantic/pydantic (pydantic)

v2.12.5: 2025-11-26

Compare Source

v2.12.5 (2025-11-26)

This is the fifth 2.12 patch release, addressing an issue with the MISSING sentinel and providing several documentation improvements.

The next 2.13 minor release will be published in a couple weeks, and will include a new polymorphic serialization feature addressing
the remaining unexpected changes to the serialize as any behavior.

• Fix pickle error when using model_construct() on a model with MISSING as a default value by @​ornariece in #​12522.
• Several updates to the documentation by @​Viicos.

Full Changelog: pydantic/pydantic@v2.12.4...v2.12.5

Kludex/uvicorn (uvicorn)

v0.40.0: Version 0.40.0

Compare Source

What's Changed

• Drop Python 3.9 by @​Kludex in #​2772

Full Changelog: Kludex/uvicorn@0.39.0...0.40.0

v0.39.0: Version 0.39.0

Compare Source

What's Changed

• explicitly start ASGI run with empty context by @​pmeier in #​2742
• fix(websockets): Send close frame on ASGI return by @​Kludex in #​2769

New Contributors

• @​pmeier made their first contribution in #​2742

Full Changelog: Kludex/uvicorn@0.38.0...0.39.0

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: uv.lock

Command failed: uv lock --upgrade-package matplotlib --upgrade-package nb-cli --upgrade-package nonebot-adapter-satori --upgrade-package nonebot-plugin-alconna --upgrade-package nonebot-plugin-orm --upgrade-package nonebot-plugin-parser --upgrade-package pydantic --upgrade-package uvicorn
Downloading cpython-3.14.0-linux-x86_64-gnu (download) (33.7MiB)
 Downloaded cpython-3.14.0-linux-x86_64-gnu (download)
Using CPython 3.14.0
  × No solution found when resolving dependencies:
  ╰─▶ Because only the following versions of nonebot-plugin-uninfo are
      available:
          nonebot-plugin-uninfo<0.10.1
          nonebot-plugin-uninfo>=1.0.0
      and nonebot-plugin-parser==2.3.7 depends on
      nonebot-plugin-uninfo>=0.10.1,<1.0.0, we can conclude that
      nonebot-plugin-parser==2.3.7 cannot be used.
      And because your project depends on
      nonebot-plugin-parser[htmlkit]==2.3.7, we can conclude that your
      project's requirements are unsatisfiable.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 86.30%. Comparing base (16336c2) to head (2146261).
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #774   +/-   ##
=======================================
  Coverage   86.30%   86.30%           
=======================================
  Files          71       71           
  Lines        2555     2555           
=======================================
  Hits         2205     2205           
  Misses        350      350           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.