chore(deps): bump the gha group across 1 directory with 14 updates

[dependabot]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

---

Important

Bump versions of flake8, pytest-sugar, vcrpy, pytest-asyncio, and anthropic in pyproject.toml.

• Dependency Updates:
  • Bump flake8 from 7.0.0 to 7.3.0.
  • Bump pytest-sugar from 1.0.0 to 1.1.1.
  • Update vcrpy to >=7,<9.
  • Update pytest-asyncio to >=0.23.7,<1.4.0.
  • Update anthropic to >=0.25.2,<0.76.0.

^{This description was created by for 31c6a24. You can customize this summary. It will automatically update as commits are pushed.}

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[ellipsis-dev]

Important

Looks good to me! 👍

Reviewed everything up to 31c6a24 in 1 minute and 7 seconds. Click for details.

• Reviewed 31 lines of code in 1 files
• Skipped 1 files when reviewing.
• Skipped posting 5 draft comments. View those below.
• Modify your settings and rules to customize what types of comments Ellipsis leaves. And don't forget to react with 👍 or 👎 to teach Ellipsis.

1. packages/traceloop-sdk/pyproject.toml:78

• Draft comment:
  Bump flake8 to 7.3.0 – please verify that the updated linting rules/configuration don’t introduce unexpected warnings.
• Reason this comment was not posted:
  Confidence changes required: 33% <= threshold 50% None

2. packages/traceloop-sdk/pyproject.toml:80

• Draft comment:
  Update pytest-sugar to 1.1.1 – ensure that the test output formatting remains as expected.
• Reason this comment was not posted:
  Confidence changes required: 33% <= threshold 50% None

3. packages/traceloop-sdk/pyproject.toml:88

• Draft comment:
  vcrpy version range changed from '^7.0.0' to '>=7,<9'. Confirm that allowing 8.x versions won’t introduce breaking changes.
• Reason this comment was not posted:
  Comment did not seem useful. Confidence is useful = 0% <= threshold 50% The comment is asking the author to confirm that a change in the version range of a dependency won't introduce breaking changes. This falls under the rule of not asking the author to confirm or ensure behavior, especially related to dependencies.

4. packages/traceloop-sdk/pyproject.toml:90

• Draft comment:
  pytest-asyncio range is now '>=0.23.7,<1.4.0', which is broader than before. Please verify compatibility with future 1.x releases.
• Reason this comment was not posted:
  Comment did not seem useful. Confidence is useful = 0% <= threshold 50% This comment is about a dependency version change, specifically the range for pytest-asyncio. The comment asks to verify compatibility with future 1.x releases, which falls under the rule of not commenting on dependency changes or asking the author to ensure compatibility. Therefore, this comment should be removed.

5. packages/traceloop-sdk/pyproject.toml:91

• Draft comment:
  Anthropic dependency range changed from '^0.25.2' to '>=0.25.2,<0.76.0'. Since pre-1.0 versions can be volatile, ensure that updates within this range are API-compatible.
• Reason this comment was not posted:
  Comment did not seem useful. Confidence is useful = 20% <= threshold 50% This comment is about a dependency change, specifically the version range of a library. It advises caution due to potential volatility in pre-1.0 versions. However, it does not provide a specific suggestion or ask for confirmation of an intentional change. It falls under the rule of not commenting on dependency changes unless it's a recognized issue or specific suggestion.

Workflow ID: wflow_kDhxtai6aBcad0hw

^{You can customize by changing your verbosity settings, reacting with 👍 or 👎, replying to comments, or adding code review rules.}