build(deps): update ruff requirement from <0.8.7 to <0.9.1 (#873)

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: William Woodruff <william@trailofbits.com>

Author: dependabot[bot]

pip_audit/_cli.py

@@ -554,9 +554,7 @@ def audit() -> None:  # pragma: no cover
                         )
                     else:
                         fix = cast(ResolvedFixVersion, fix)
-                        logger.info(
-                            f"Dry run: would have upgraded {fix.dep.name} to " f"{fix.version}"
-                        )
+                        logger.info(f"Dry run: would have upgraded {fix.dep.name} to {fix.version}")
                     continue
 
                 if not fix.is_skipped():

pip_audit/_service/pypi.py

@@ -104,7 +104,7 @@ def query(self, spec: Dependency) -> tuple[Dependency, list[VulnerabilityResult]
             try:
                 fix_versions = [Version(fixed_in) for fixed_in in v["fixed_in"]]
             except InvalidVersion as iv:
-                raise ServiceError(f'Received malformed version from PyPI: {v["fixed_in"]}') from iv
+                raise ServiceError(f"Received malformed version from PyPI: {v['fixed_in']}") from iv
 
             # The ranges aren't guaranteed to come in chronological order
             fix_versions.sort()

pyproject.toml

@@ -47,9 +47,7 @@ test = [
     "pytest-cov",
 ]
 lint = [
-    # NOTE(ww): ruff is under active development, so we pin conservatively here
-    # and let Dependabot periodically perform this update.
-    "ruff < 0.8.7",
+    "ruff ~= 0.9",
     # HACK(ww): interrogate needs setuptools to provide `pkg_resources` on Python 3.12+;
     # remove this when https://github.com/econchick/interrogate/issues/164 is resolved.
     "setuptools",