Lock file maintenance Python dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
		lockFileMaintenance	All locks refreshed
cosl	charm-libs	patch	0.0.51 -> 0.0.54
ops (changelog)	charm-libs	minor	2.17.1 -> 2.18.0
ops (changelog)	dependencies	minor	^2.17.1 -> ^2.18.0
ruff (source, changelog)	format	patch	^0.9.3 -> ^0.9.4

🔧 This Pull Request updates lock files to use the latest dependency versions.

---

Release Notes

canonical/cos-lib (cosl)

v0.0.54

Compare Source

What's Changed

• pin ops dependency to < 2.18 by @​MichaelThamm in https://github.com/canonical/cos-lib/pull/121

Full Changelog: canonical/cos-lib@0.0.53...0.0.54

canonical/operator (ops)

v2.18.0

Compare Source

Features

• Don't store duplicate events in the notice queue (#​1372)

Fixes

• Remove ops.main.main deprecation warning, and avoid warnings in action output (#​1496)

Documentation

• Use the right ops-scenario for building the docs (#​1470)
• Go full Diátaxis, ingesting the relevant juju.is/docs/sdk documentation by @​tmihoc (#​1481)
• Update boilerplate links (#​1515)
• Fix broken links and use cross references instead of absolute links (#​1519)
• Use explicit framework param instead of *args (#​1523)
• Add doc style tips to HACKING.md (#​1528)
• Fix link to Juju docs in Kubernetes charm tutorial (#​1529)
• Remove the publish badge from the README (#​1505)
• Add how-to for storing state (#​1534)
• Improve info about contributing to docs (#​1533)
• Fix formatting errors in HACKING.md (#​1539)

Continuous Integration

• Add support for injecting the latest ops when uv is used (#​1477)
• Don't cancel other unit tests when one fails (#​1471)
• Use Concierge to set up the smoke test environments (#​1541)
• Bump poetry to 2.0 to match downstream (#​1542)
• Enable the prometheus-k8s revision updates again (#​1544)
• Include Juju 2.9 in the smoke tests (#​1545)

Testing

• Handle warnings generated by our own tests (#​1469)
• Allow check to fail an additional time when running the test (#​1531)

astral-sh/ruff (ruff)

v0.9.4

Compare Source

Preview features

• [airflow] Extend airflow context parameter check for BaseOperator.execute (AIR302) (#​15713)
• [airflow] Update AIR302 to check for deprecated context keys (#​15144)
• [flake8-bandit] Permit suspicious imports within stub files (S4) (#​15822)
• [pylint] Do not trigger PLR6201 on empty collections (#​15732)
• [refurb] Do not emit diagnostic when loop variables are used outside loop body (FURB122) (#​15757)
• [ruff] Add support for more re patterns (RUF055) (#​15764)
• [ruff] Check for shadowed map before suggesting fix (RUF058) (#​15790)
• [ruff] Do not emit diagnostic when all arguments to zip() are variadic (RUF058) (#​15744)
• [ruff] Parenthesize fix when argument spans multiple lines for unnecessary-round (RUF057) (#​15703)

Rule changes

• Preserve quote style in generated code (#​15726, #​15778, #​15794)
• [flake8-bugbear] Exempt NewType calls where the original type is immutable (B008) (#​15765)
• [pylint] Honor banned top-level imports by TID253 in PLC0415. (#​15628)
• [pyupgrade] Ignore is_typeddict and TypedDict for deprecated-import (UP035) (#​15800)

CLI

• Fix formatter warning message for flake8-quotes option (#​15788)
• Implement tab autocomplete for ruff config (#​15603)

Bug fixes

• [flake8-comprehensions] Do not emit unnecessary-map diagnostic when lambda has different arity (C417) (#​15802)
• [flake8-comprehensions] Parenthesize sorted when needed for unnecessary-call-around-sorted (C413) (#​15825)
• [pyupgrade] Handle end-of-line comments for quoted-annotation (UP037) (#​15824)

Documentation

• Add missing config docstrings (#​15803)
• Add references to trio.run_process and anyio.run_process (#​15761)
• Use uv init --lib in tutorial (#​15718)

---

Configuration

📅 Schedule: Branch creation - "after 1am and before 3am every weekday" in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 75.20%. Comparing base (28eb473) to head (014b3de).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #478   +/-   ##
=======================================
  Coverage   75.20%   75.20%           
=======================================
  Files           9        9           
  Lines        1319     1319           
  Branches      239      239           
=======================================
  Hits          992      992           
  Misses        254      254           
  Partials       73       73           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[taurus-forever]

@dragomirp please ping me to review it once.
For the history: canonical/operator#1561