build(deps): bump nox from 2025.5.1 to 2025.10.14 in /.github/workflows

[dependabot]

Bumps nox from 2025.5.1 to 2025.10.14.

Release notes

Sourced from nox's releases.

2025.10.14 🥧

This release updates the default for the GitHub Action to target the current range of recommended Pythons (3.10-3.14). There's now a mechanism to control if nox downloads Python (even when not using uv). Several fixes include better free-threading support, custom filenames in script mode, and support for GitHub Actions Windows ARM runners.

We'd like to thank the following folks who contributed to this release:

• @​agriyakhetarpal (first contribution)
• @​henryiii
• @​IvanIsCoding (first contribution)
• @​jbdyn (first contribution)
• @​johnthagen
• @​saucoide
• @​shenxianpeng (first contribution)
• @​Spacetown (first contribution)
• @​zzzeek (first contribution)

Features:

• Add --download-python python option by @​saucoide in wntrblm/nox#989
• Add session.env_dir to get the Path to the environment by @​jbdyn in wntrblm/nox#974

Changes:

• GitHub Action 3.10-3.14 default by @​henryiii in wntrblm/nox#1003
• Percolate the verbose global option to the silent argument for session installation commands, and document it by @​agriyakhetarpal in wntrblm/nox#983
• Disallow abbreviated options by @​henryiii in wntrblm/nox#973
• Log output of failed process by @​jbdyn in wntrblm/nox#974
• Use a separate logging level (SESSION_INFO) for session info instead of warning by @​Spacetown in wntrblm/nox#990

Bugfixes:

• Support scripts with custom names by @​henryiii in wntrblm/nox#1007
• Correctly match free-threaded python versions by @​zzzeek in wntrblm/nox#999
• Let uv replace the directory instead of deleting it ourselves by @​henryiii in wntrblm/nox#981
• Tighten type for venv_backend by @​henryiii in wntrblm/nox#967
• GitHub Actions Windows ARM support by @​henryiii in wntrblm/nox#1002
• Show a warning (eventually error) if a duplicate session is encountered by @​henryiii in wntrblm/nox#1013
• Fix validation error for nox.options.keywords by @​henryiii in wntrblm/nox#1011

Documentation:

• Add --script to uv run inline metadata for nox-uv example by @​johnthagen in wntrblm/nox#984
• Document nox-uv third party package by @​johnthagen in wntrblm/nox#978
• Recommend --locked over --frozen for uv sync by @​johnthagen in wntrblm/nox#972
• Tweak the grammar in a comment in tasks.py by @​brettcannon in wntrblm/nox#987
• Add rustworkx as an example user by @​IvanIsCoding in wntrblm/nox#975
• Update badge from black to ruff by @​shenxianpeng in wntrblm/nox#971

Internal changes:

• Hide new coverage warning on 3.14 by @​henryiii in wntrblm/nox#980

... (truncated)

Changelog

Sourced from nox's changelog.

2025.10.14

This release updates the default for the GitHub Action to target the current range of recommended Pythons (3.10-3.14). There's now a mechanism to control if nox downloads Python (even when not using uv). Several fixes include better free-threading support, custom filenames in script mode, and support for GitHub Actions Windows ARM runners.

We'd like to thank the following folks who contributed to this release:

• @​agriyakhetarpal (first contribution)
• @​henryiii
• @​IvanIsCoding (first contribution)
• @​jbdyn (first contribution)
• @​johnthagen
• @​saucoide
• @​shenxianpeng (first contribution)
• @​Spacetown (first contribution)
• @​zzzeek (first contribution)

Features:

• Add --download-python python option by @​saucoide in wntrblm/nox#989
• Add session.env_dir to get the Path to the environment by @​jbdyn in wntrblm/nox#974

Changes:

• GitHub Action 3.10-3.14 default by @​henryiii in wntrblm/nox#1003
• Percolate the verbose global option to the silent argument for session installation commands, and document it by @​agriyakhetarpal in wntrblm/nox#983
• Disallow abbreviated options by @​henryiii in wntrblm/nox#973
• Log output of failed process by @​jbdyn in wntrblm/nox#974
• Use a separate logging level (SESSION_INFO) for session info instead of warning by @​Spacetown in wntrblm/nox#990

Bugfixes:

• Support scripts with custom names by @​henryiii in wntrblm/nox#1007
• Correctly match free-threaded python versions by @​zzzeek in wntrblm/nox#999
• Let uv replace the directory instead of deleting it ourselves by @​henryiii in wntrblm/nox#981
• Tighten type for venv_backend by @​henryiii in wntrblm/nox#967
• GitHub Actions Windows ARM support by @​henryiii in wntrblm/nox#1002
• Show a warning (eventually error) if a duplicate session is encountered by @​henryiii in wntrblm/nox#1013
• Fix validation error for nox.options.keywords by @​henryiii in wntrblm/nox#1011

Documentation:

• Add --script to uv run inline metadata for nox-uv example by @​johnthagen in wntrblm/nox#984
• Document nox-uv third party package by @​johnthagen in wntrblm/nox#978
• Recommend --locked over --frozen for uv sync by @​johnthagen in wntrblm/nox#972
• Tweak the grammar in a comment in tasks.py by @​brettcannon in wntrblm/nox#987
• Add rustworkx as an example user by @​IvanIsCoding in wntrblm/nox#975
• Update badge from black to ruff by @​shenxianpeng in wntrblm/nox#971

Internal changes:

... (truncated)

Commits

• 449f935 docs: prepare for 2025.10.14 (#1010)
• 6174960 fix: show a warning if a duplicate session is encountered (#1013)
• 1dc6910 chore: remove docs from default dev group (#1012)
• bd6629a fix: validation error for nox.options.keywords (#1011)
• 1a4b11a fix: log output of failed process (#974)
• a0d354c feat: use a separate logging level for session info instead of warning
• 55acc2a ci: adapt for bot name in commits (#1009)
• 53bf191 tests: add conda marker (#969)
• c6541cd fix: support scripts with custom names (#1007)
• e7a288d chore(deps): bump astral-sh/setup-uv from 6 to 7 in the actions group (#1008)
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
nox	[>= 2024.4.a, < 2024.5]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)