Bumps [pip](https://github.com/pypa/pip) from 25.3 to 26.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pypa/pip/blob/main/NEWS.rst">pip's changelog</a>.</em></p> <blockquote> <h1>26.0 (2026-01-30)</h1> <h2>Deprecations and Removals</h2> <ul> <li>Remove support for non-bare project names in egg fragments. Affected users should use the <code>Direct URL requirement syntax <https://packaging.python.org/en/latest/specifications/version-specifiers/#direct-references></code><em>. (<code>[#13157](pypa/pip#13157) <https://github.com/pypa/pip/issues/13157></code></em>)</li> </ul> <h2>Features</h2> <ul> <li> <p>Display pip's command-line help in colour, if possible. (<code>[#12134](pypa/pip#12134) <https://github.com/pypa/pip/issues/12134></code>_)</p> </li> <li> <p>Support installing dependencies declared with inline script metadata (:pep:<code>723</code>) with <code>--requirements-from-script</code>. (<code>[#12891](pypa/pip#12891) <https://github.com/pypa/pip/issues/12891></code>_)</p> </li> <li> <p>Add <code>--all-releases</code> and <code>--only-final</code> options to control pre-release and final release selection during package installation. (<code>[#13221](pypa/pip#13221) <https://github.com/pypa/pip/issues/13221></code>_)</p> </li> <li> <p>Add <code>--uploaded-prior-to</code> option to only consider packages uploaded prior to a given datetime when the <code>upload-time</code> field is available from a remote index. (<code>[#13625](pypa/pip#13625) <https://github.com/pypa/pip/issues/13625></code>_)</p> </li> <li> <p>Add <code>--use-feature inprocess-build-deps</code> to request that build dependencies are installed within the same pip install process. This new mechanism is faster, supports <code>--no-clean</code> and <code>--no-cache-dir</code> reliably, and supports prompting for authentication.</p> <p>Enabling this feature will also enable <code>--use-feature build-constraints</code>. This feature will become the default in a future pip version. (<code>[#9081](pypa/pip#9081) <https://github.com/pypa/pip/issues/9081></code>_)</p> </li> <li> <p><code>pip cache purge</code> and <code>pip cache remove</code> now clean up empty directories and legacy files left by older pip versions. (<code>[#9058](pypa/pip#9058) <https://github.com/pypa/pip/issues/9058></code>_)</p> </li> </ul> <h2>Bug Fixes</h2> <ul> <li>Fix selecting pre-release versions when only pre-releases match. For example, <code>package>1.0</code> with versions <code>1.0, 2.0rc1</code> now installs <code>2.0rc1</code> instead of failing. (<code>[#13746](pypa/pip#13746) <https://github.com/pypa/pip/issues/13746></code>_)</li> <li>Revisions in version control URLs now must be percent-encoded. For example, use <code>git+https://example.com/repo.git@issue%231</code> to specify the branch <code>issue#1</code>. If you previously used a branch name containing a <code>%</code> character in a version control URL, you now need to replace it with <code>%25</code> to ensure correct percent-encoding. (<code>[#13407](pypa/pip#13407) <https://github.com/pypa/pip/issues/13407></code>_)</li> <li>Preserve original casing when a path is displayed. (<code>[#6823](pypa/pip#6823) <https://github.com/pypa/pip/issues/6823></code>_)</li> <li>Fix bash completion when the <code>$IFS</code> variable has been modified from its default. (<code>[#13555](pypa/pip#13555) <https://github.com/pypa/pip/issues/13555></code>_)</li> <li>Precompute Python requirements on each candidate, reducing time of long resolutions. (<code>[#13656](pypa/pip#13656) <https://github.com/pypa/pip/issues/13656></code>_)</li> <li>Skip redundant work converting version objects to strings when using the <code>importlib.metadata</code> backend. (<code>[#13660](pypa/pip#13660) <https://github.com/pypa/pip/issues/13660></code>_)</li> <li>Fix <code>pip index versions</code> to honor only-binary/no-binary options. (<code>[#13682](pypa/pip#13682) <https://github.com/pypa/pip/issues/13682></code>_)</li> <li>Fix fallthrough logic for options, allowing overriding global options with defaults from user config. (<code>[#13703](pypa/pip#13703) <https://github.com/pypa/pip/issues/13703></code>_)</li> <li>Use a path-segment prefix comparison, not char-by-char. (<code>[#13777](pypa/pip#13777) <https://github.com/pypa/pip/issues/13777></code>_)</li> </ul> <h2>Vendored Libraries</h2>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/pip/commit/2f4d4a836ed00076001376fbb0ce6dc4f22cdae2"><code>2f4d4a8</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13779">#13779</a> from notatallshaw/fix-26.0-news</li> <li><a href="https://github.com/pypa/pip/commit/04307a42261749cfa1c86a5537ad88f44ed2a41a"><code>04307a4</code></a> fix 26.0 news</li> <li><a href="https://github.com/pypa/pip/commit/6ec7b0a488f614a7632442fe7c651957fdb5fc85"><code>6ec7b0a</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13775">#13775</a> from notatallshaw/release/26.0</li> <li><a href="https://github.com/pypa/pip/commit/4104356cd83d1614af45d203d64cb84705dad9d2"><code>4104356</code></a> Bump for release</li> <li><a href="https://github.com/pypa/pip/commit/58be8836b68814295d33bc5c56c38d3a0659ae81"><code>58be883</code></a> Update AUTHORS.txt</li> <li><a href="https://github.com/pypa/pip/commit/66f2dece5ba9cc0ee9fe7035c46ba4b0756559b5"><code>66f2dec</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13778">#13778</a> from ichard26/docs/groups</li> <li><a href="https://github.com/pypa/pip/commit/0214103df7d7e6e3de3b8352ce3a3135437124f0"><code>0214103</code></a> doc: Re-expose package selection group options</li> <li><a href="https://github.com/pypa/pip/commit/fdbe7628f3ce5d99ac5962fa9dba9e31f3738fcc"><code>fdbe762</code></a> Install pip within docs Nox sessions</li> <li><a href="https://github.com/pypa/pip/commit/8e227a9be4faa9594e05d02ca05a413a2a4e7735"><code>8e227a9</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13777">#13777</a> from sethmlarson/commonpath</li> <li><a href="https://github.com/pypa/pip/commit/f5315ad96808c106a5c73936cebd335082be406e"><code>f5315ad</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13776">#13776</a> from ichard26/docs/versionadded</li> <li>Additional commits viewable in <a href="https://github.com/pypa/pip/compare/25.3...26.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pip&package-manager=uv&previous-version=25.3&new-version=26.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>