[py] Bump Python dev dependencies

[cgoldberg]

User description

💥 What does this PR do?

This PR updates Python dev dependencies to latest versions and generates new lock files.

💡 Additional Considerations

markdown-it-py, SecretStorage, sphinx, and docutils packages can't be updated to latest versions because they both all require Python 3.10+. They are held at the last compatible versions.

🔄 Types of changes

• Dev/CI

---

PR Type

Other

---

Description

• Update Python dev dependencies to latest versions

• Upgrade ruff from 0.12.10 to 0.13.0

• Update mypy from 1.16.0 to 1.17.1

• Refresh lock files with new dependency versions

---

Diagram Walkthrough

flowchart LR
  A["requirements.txt"] --> B["Update dependencies"]
  B --> C["Generate lock files"]
  D["tox.ini"] --> B
  E["multitool.lock.json"] --> F["Update ruff binaries"]

Loading

File Walkthrough

Relevant files

Dependencies

multitool.lock.json Update ruff binaries to version 0.13.0                                      multitool.lock.json Update ruff binary URLs from version 0.12.10 to 0.13.0 Update SHA256 hashes for all platform binaries +10/-10  requirements.txt Update Python package versions                                                      py/requirements.txt Bump multiple Python packages to latest versions Update cachetools, cffi, cryptography, docutils, and others Maintain compatibility constraints for Python 3.10+ packages +14/-14  requirements_lock.txt Regenerate dependency lock file                                                    py/requirements_lock.txt Regenerate lock file with updated package versions Update SHA256 hashes for all dependencies Maintain pinned versions for reproducible builds +159/-142 tox.ini Update dev tool versions                                                                  py/tox.ini Update mypy from 1.16.0 to 1.17.1 Update ruff from 0.12.10 to 0.13.0 +2/-2

---

[qodo-merge-pro]

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

⏱️ Estimated effort to review: 2 🔵🔵⚪⚪⚪

🧪 No relevant tests

🔒 No security concerns identified

⚡ Recommended focus areas for review Build/ABI Risk cffi was bumped to 2.0.0 (major). Verify wheel availability and compilation across CI platforms, and ensure dependent packages (e.g., pycparser) remain compatible to prevent install/build failures. cffi==2.0.0 chardet==5.2.0 Integrity Check Updated ruff binary URLs and SHA256 hashes. Validate that archive internal paths match the file entries and that checksums are correct for all OS/CPU variants to avoid CI download/verify failures. "url": "https://github.com/astral-sh/ruff/releases/download/0.13.0/ruff-aarch64-unknown-linux-musl.tar.gz", "file": "ruff-aarch64-unknown-linux-musl/ruff", "sha256": "bdee6f1376470b74b1dc5ed48eca52ec9c3e4512bd7f3204e0df100f0bed4741", "os": "linux", "cpu": "arm64" }, { "kind": "archive", "url": "https://github.com/astral-sh/ruff/releases/download/0.13.0/ruff-x86_64-unknown-linux-musl.tar.gz", "file": "ruff-x86_64-unknown-linux-musl/ruff", "sha256": "b56ac90cc6987401bafdcf1b931ef044074c5b9451286afa4606a983f64f4fdd", "os": "linux", "cpu": "x86_64" }, { "kind": "archive", "url": "https://github.com/astral-sh/ruff/releases/download/0.13.0/ruff-aarch64-apple-darwin.tar.gz", "file": "ruff-aarch64-apple-darwin/ruff", "sha256": "0d706798534537b6655b79fd95c2955c0a0013d4c54d36679d3306825a6bd6aa", "os": "macos", "cpu": "arm64" }, { "kind": "archive", "url": "https://github.com/astral-sh/ruff/releases/download/0.13.0/ruff-x86_64-apple-darwin.tar.gz", "file": "ruff-x86_64-apple-darwin/ruff", "sha256": "ac47ad1ac90f3070c064d2f5fceef4fe609fec7c073fd29d0814ed126c492e6d", "os": "macos", "cpu": "x86_64" }, { "kind": "archive", "url": "https://github.com/astral-sh/ruff/releases/download/0.13.0/ruff-x86_64-pc-windows-msvc.zip", "file": "ruff-x86_64-pc-windows-msvc/ruff.exe", "sha256": "3a8d8cb96333671f78a5d209ddb4f830287e3eb2796fe01dd043b02ec1c1c7f1", "os": "windows", "cpu": "x86_64" }