chore(deps): bump the all-in-one group with 5 updates

[dependabot]

Bumps the all-in-one group with 5 updates:

Package	From	To
rules_python	1.4.1	1.9.0
rules_rust	0.63.0	0.69.0
rules_cc	0.2.14	0.2.17
toolchains_llvm	1.5.0	1.6.0
buildifier_prebuilt	8.2.0.2	8.5.1

Updates rules_python from 1.4.1 to 1.9.0

Release notes

Sourced from rules_python's releases.

1.9.0

For more detailed setup instructions, see https://rules-python.readthedocs.io/en/latest/getting-started.html

For the user-facing changelog see here

Using Bzlmod

Add to your MODULE.bazel file:

bazel_dep(name = "rules_python", version = "1.9.0")
python = use_extension("@​rules_python//python/extensions:python.bzl", "python")
python.toolchain(
python_version = "3.13",
)
pip = use_extension("@​rules_python//python/extensions:pip.bzl", "pip")
pip.parse(
hub_name = "pypi",
python_version = "3.13",
requirements_lock = "//:requirements_lock.txt",
)
use_repo(pip, "pypi")

Using WORKSPACE

Paste this snippet into your WORKSPACE file:

load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
http_archive(
name = "rules_python",
sha256 = "098ba13578e796c00c853a2161f382647f32eb9a77099e1c88bc5299333d0d6e",
strip_prefix = "rules_python-1.9.0",
url = "https://github.com/bazel-contrib/rules_python/releases/download/1.9.0/rules_python-1.9.0.tar.gz",
)
load("@​rules_python//python:repositories.bzl", "py_repositories")
py_repositories()

Gazelle plugin

Paste this snippet into your WORKSPACE file:

... (truncated)

Changelog

Sourced from rules_python's changelog.

1.9.0 - 2026-02-21

{#v1-9-0-removed}

Removed

• Nothing removed.

{#v1-9-0-changed}

Changed

• DEPRECATED: implicit zipapp support
  • Implicit zipapp output of py_binary/py_test has been deprecated and replaced by separate {obj}py_zipapp_binary and {obj}py_zipapp_test rules. See #3567 for a detailed migration guide.
• (toolchains) stop exposing config settings in python toolchain alias repos. Please consider depending on the flags defined in //python/config_setting/... and the @platforms package instead.
• (binaries/tests) The PYTHONBREAKPOINT environment variable is automatically inherited
• (binaries/tests) The {obj}stamp attribute now transitions the Bazel builtin {flag}--stamp flag.
• (pypi) Now the RECORD file patches will follow the quoted or unquoted filenames convention in order to make pytorch and friends easier to patch.
• (wheel) py_wheel no longer expands the input depset during analysis, improving analysis performance for targets with large dependency trees.
• (binaries/tests) (Windows) --enable_runfiles=true is the default for py_binary/py_test. Prior behavior can be restored by adding @rules_python//command_line_option:enable_runfiles=false or @rules_python//command_line_option:enable_runfiles=INHERIT to the config_settings attribute. NOTE: enable_runfiles=true will soon become required for Windows.

{#v1-9-0-fixed}

Fixed

• (tests) No more coverage warnings are being printed if there are no sources. (#2762)
• (gazelle) Ancestor conftest.py files are added in addition to sibling conftest.py. (#3497) Note that this behavior can be reverted to the pre-1.9.0 behavior by setting the new python_include_ancestor_conftest directive to false.
• (binaries/tests) Stamped build data generated by Windows actions is readable

{#v1-9-0-added}

Added

• (binaries/tests) {obj}--debugger: allows specifying an extra dependency to add to binaries/tests for custom debuggers.
• (binaries/tests) Build information is now included in binaries and tests. Use the bazel_binary_info module to access it. The {flag}--stamp flag will add {obj}--workspace_status_command information.

... (truncated)

Commits

• bac5494 feat(pypi): make whl_library reproducible under pipstar (#3589) (#3632)
• 9a93adc chore: repleace version marker in features.bzl
• 0fafcd8 docs(gazelle): Add versionadded details to some Gazelle directives.md (#3624)
• 8a9cd71 chore: prepare 1.9.0 release (#3623)
• c805941 feat: command_line_option transition support, default windows to enable_runfi...
• 589c7ee build(deps): bump the pip group across 2 directories with 2 updates (#3617)
• b6f1b78 chore: better bootstrap logging (#3608)
• c9da781 fix: use runfiles_root_path in stage2 bootstrap (#3605)
• 16430a8 chore: ignore rmtree errors in wheel_installer_test (#3607)
• 1cfed94 test: add system_python_nodeps_test (#3609)
• Additional commits viewable in compare view

Updates rules_rust from 0.63.0 to 0.69.0

Release notes

Sourced from rules_rust's releases.

0.69.0

Additional documentation can be found at: https://bazelbuild.github.io/rules_rust/#setup

Bzlmod

bazel_dep(name = "rules_rust", version = "0.69.0")

WORKSPACE

load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
http_archive(
    name = "rules_rust",
    integrity = "sha256-u8dkwlLQYSgbI1knek1GSA4tz69yr8HObgCtpYzL/Uw=",
    urls = ["https://github.com/bazelbuild/rules_rust/releases/download/0.69.0/rules_rust-0.69.0.tar.gz"],
)

Extensions

Bindgen

Bzlmod

bazel_dep(name = "rules_rust_bindgen", version = "0.69.0")

WORKSPACE

load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
http_archive(
    name = "rules_rust_bindgen",
    integrity = "sha256-u8dkwlLQYSgbI1knek1GSA4tz69yr8HObgCtpYzL/Uw=",
    strip_prefix = "extensions/bindgen",
    urls = ["https://github.com/bazelbuild/rules_rust/releases/download/0.69.0/rules_rust-0.69.0.tar.gz"],
)

MdBook

... (truncated)

Commits

• 2ce620a Release 0.69.0 (#3848)
• eb183e5 Bump default version of rustc. (#3562)
• e7e25a9 use an empty staticlib as an allocator library for cc_common.link (#3864)
• 5f633d2 Include *.rmeta files in stdlib sysroot glob (#3860)
• 817bea7 Provide rust toolchain type in rustdoc action (#3863)
• 21cb5d2 Add Rust 1.93.1. (#3861)
• 854770e Add 'build_script_exec_properties' to 'crate.annotation' (#3852)
• 86d809e fix: Return repo_metadata from repository rules in rust/repositories.bzl (#3855)
• 42b098b Load cc symbols for bazel9 (#3789)
• af24d27 Fix typo in module_bzl.j2 documentation (#3793)
• Additional commits viewable in compare view

Updates rules_cc from 0.2.14 to 0.2.17

Release notes

Sourced from rules_cc's releases.

0.2.17

Using bzlmod with Bazel 6 or later:

1. [Bazel 6] Add common --enable_bzlmod to .bazelrc.

2. Add to your MODULE.bazel file:

bazel_dep(name = "rules_cc", version = "0.2.17")

Using WORKSPACE:

load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
http_archive(
name = "rules_cc",
sha256 = "283fa1cdaaf172337898749cf4b9b1ef5ea269da59540954e51fba0e7b8f277a",
strip_prefix = "rules_cc-0.2.17",
url = "https://github.com/bazelbuild/rules_cc/releases/download/0.2.17/rules_cc-0.2.17.tar.gz",
)
load("@​rules_cc//cc:extensions.bzl", "compatibility_proxy_repo")
compatibility_proxy_repo()

Full Changelog: bazelbuild/rules_cc@0.2.16...0.2.17

0.2.16

Using bzlmod with Bazel 6 or later:

1. [Bazel 6] Add common --enable_bzlmod to .bazelrc.

2. Add to your MODULE.bazel file:

bazel_dep(name = "rules_cc", version = "0.2.16")

Using WORKSPACE:

load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
</tr></table>

... (truncated)

Commits

• 541eda5 Only pass profile-correction flag on GCC
• ae1df74 Fix empty flags errors
• a464a75 Silence warning with parse_headers
• 2e612c7 Factorize pic preference logic
• 0c70f24 Automatic code cleanup.
• 1de738e Apply default compile flags passed as attrs in Windows MSVC toolchain config
• 527271c Update contributing guide
• 6402462 Add support to inject cc_feature into legacy toolchains
• 61f7516 Modify template for generated toolchain to be more buildifier compliant
• 20bf72d Fix GCC detection to be robust to symlinks
• Additional commits viewable in compare view

Updates toolchains_llvm from 1.5.0 to 1.6.0

Release notes

Sourced from toolchains_llvm's releases.

v1.6.0

Minimum bazel version: 7.0.0

If you're using bzlmod, add the following to MODULE.bazel:

bazel_dep(name = "toolchains_llvm", version = "1.6.0")
Configure and register the toolchain.
llvm = use_extension("@​toolchains_llvm//toolchain/extensions:llvm.bzl", "llvm")
llvm.toolchain(
llvm_version = "16.0.0",
)
use_repo(llvm, "llvm_toolchain")
use_repo(llvm, "llvm_toolchain_llvm") # if you depend on specific tools in scripts
register_toolchains("@​llvm_toolchain//:all")

To directly use a commit from GitHub, add this block and replace commit with the commit you want.

git_override(
  module_name = "toolchains_llvm",
  commit = "ace6215bbfe8a76884646b2458b42380e2201607",
  remote = "https://github.com/bazel-contrib/toolchains_llvm",
)

If not using bzlmod, include this section in your WORKSPACE:

load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
http_archive(
name = "toolchains_llvm",
sha256 = "2b298a1d7ea99679f5edf8af09367363e64cb9fbc46e0b7c1b1ba2b1b1b51058",
strip_prefix = "toolchains_llvm-v1.6.0",
canonical_id = "v1.6.0",
url = "https://github.com/bazel-contrib/toolchains_llvm/releases/download/v1.6.0/toolchains_llvm-v1.6.0.tar.gz",
)
load("@​toolchains_llvm//toolchain:deps.bzl", "bazel_toolchain_dependencies")
bazel_toolchain_dependencies()
load("@​bazel_features//:deps.bzl", "bazel_features_deps")
bazel_features_deps()
</tr></table>

... (truncated)

Commits

• ace6215 [bugfix] Reference os variable instead of os function (#630)
• a667b97 chore(deps): update dependency rules_java to v9.1.0 (#627)
• fb29f3d toolchain: Set link_libs rather than link_flags (#624)
• 43e5dc4 Add LLVM 21.1.6 distribution checksums (#620)
• cd43f1d chore(deps): update actions/checkout action to v6 (#619)
• f20171e chore(deps): update dependency tar.bzl to v0.7.0 (#618)
• f4afe03 chore(deps): update dependency rules_python to v1.7.0 (#617)
• 8dddf7c Add load for cc_import (#616)
• 04129fa chore(deps): update dependency com_google_protobuf to v33.1 (#615)
• ea52d71 Update distros without download (#614)
• Additional commits viewable in compare view

Updates buildifier_prebuilt from 8.2.0.2 to 8.5.1

Release notes

Sourced from buildifier_prebuilt's releases.

Release 8.5.1

Changes

• Add rules_shell as runtime dep by @​keith in keith/buildifier-prebuilt#137
• Bump to 8.5.1 by @​agluszak in keith/buildifier-prebuilt#138
• @​agluszak made their first contribution in keith/buildifier-prebuilt#138

Full Changelog: keith/buildifier-prebuilt@8.2.1.2...8.5.1

Bazel Module Snippet

bazel_dep(
    name = "buildifier_prebuilt",
    version = "8.5.1",
    dev_dependency = True,
)

Workspace Snippet

load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
http_archive(
name = "buildifier_prebuilt",
sha256 = "478f8a4b40af0ffd09e4823062a0ea28fda4247236f1059324b783202e0dd4d4",
strip_prefix = "buildifier-prebuilt-8.5.1",
urls = [
"http://github.com/keith/buildifier-prebuilt/archive/8.5.1.tar.gz",
],
)
load("@​buildifier_prebuilt//:deps.bzl", "buildifier_prebuilt_deps")
buildifier_prebuilt_deps()
load("@​bazel_skylib//:workspace.bzl", "bazel_skylib_workspace")
bazel_skylib_workspace()
load("@​buildifier_prebuilt//:defs.bzl", "buildifier_prebuilt_register_toolchains")
buildifier_prebuilt_register_toolchains()

Release 8.2.1.2

What's Changed

• Remove fail for missing sha by @​keith in keith/buildifier-prebuilt#131
• Add s390x definitions by @​keith in keith/buildifier-prebuilt#132

... (truncated)

Commits

• 0dae915 Bump to 8.5.1 (#138)
• ab040d6 Move CI workflow into ci.yml (#136)
• 47ae73d Add rules_shell as runtime dep (#137)
• 1075c04 Add 9.x to CI (#134)
• 0294a33 Update README.md for 8.2.1.2 (#133)
• f455d97 Add s390x definitions (#132)
• fcf84cf Remove fail for missing sha (#131)
• 7660547 Update README.md for 8.2.1.1 (#129)
• 9ae5b14 Add support for riscv64 (#128)
• 370e630 bash: use -prune in find (#127)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

License Check Results

🚀 The license check job ran with the Bazel command:

bazel run --lockfile_mode=error //:license-check

Status: ⚠️ Needs Review

Click to expand output

[License Check Output]
Extracting Bazel installation...
Starting local Bazel server (8.3.0) and connecting to it...
INFO: Invocation ID: 280fa909-a309-4542-88b9-7ad1dbe713c0
Computing main repo mapping: 
Computing main repo mapping: 
Computing main repo mapping: 
Loading: 
Loading: 0 packages loaded
Loading: 0 packages loaded
Loading: 0 packages loaded
    currently loading: 
Loading: 0 packages loaded
    currently loading: 
Analyzing: target //:license-check (1 packages loaded, 0 targets configured)
Analyzing: target //:license-check (1 packages loaded, 0 targets configured)

ERROR: Analysis of target '//:license-check' failed; build aborted: MODULE.bazel.lock is no longer up-to-date because: The implementation of the extension '@@rules_python+//python/uv:uv.bzl%uv' or one of its transitive .bzl files has changed,The usages of the extension '@@rules_python+//python/uv:uv.bzl%uv' have changed. Please run `bazel mod deps --lockfile_mode=update` to update your lockfile.
INFO: Elapsed time: 8.520s, Critical Path: 0.03s
INFO: 1 process: 1 internal.
ERROR: Build did NOT complete successfully
FAILED: 
ERROR: Build failed. Not running target