This week is useful. New cuts of uv, Ruff, pytest, FastAPI and NumPy all landed inside the window, and there is meaningful movement in the Pydantic ecosystem. If you own CI, there are quick wins. If you are hiring, there is a 7-day loop below you can us as-is.
Ship-safe updates
uv 0.9.10 released Nov 17. If you are timing uv in CI, pin 0.9.10 on one service and record time to green before and after, then lock.
Ruff 0.14.5 on Nov 13. Minor rule fixes and polish. Update pre-commit so everyone formats and lints the same. Keep new checks as warnings for one sprint.
pytest 9.0.1 on Nov 12. First patch after the 9.0 major, including a fix for
unittest.SkipTestand disabling the noisy iTerm2 terminal progress behavior. Trial on a branch and check plugins.FastAPI 0.121.2 on Nov 13. Quick bug fix on the 0.121 line. Reminder that installing
fastapi[standard]brings the FastAPI Cloud CLI, sofastapi deployis available by default.NumPy 2.3.5 on Nov 16. Maintenance release on the 2.3 line. Safe bump if your matrix is already green on 3.14.
Pydantic AI shipped v1.18.0 on Nov 14, and Pydantic AI Gateway opened public beta Nov 13. If you run agents from Python, skim both before your next iteration.
Security note: targeted phishing against PyPI maintainers continues. Use phishing-resistant 2FA and avoid login links in emails. If anyone on your team touched a spoofed domain, rotate tokens and audit recent publishes and installs.
The Python hiring framework you should be running
This is the loop we recommend to hiring managers and the structure strong candidates expect. It is fair, fast and focused, so you get real signal without burning calendars. Full playbook is on the site.
7-day loop
Day 0 Publish the loop, timeline and salary range in the JD.
Day 1–2 60–90 minute take-home or async task that mirrors your stack.
Day 3 Live review of the task plus a 25 minute system design chat.
Day 4-5 Team panel with structured behavior questions and a shared scorecard.
Day 6–7 References and a written offer with band and level rationale.
Scorecard Use technical accuracy, code quality, problem solving and communication, with a simple 1–3 scale per area. Share the rubric ahead of time to reduce noise.
Drop-off prevention Post pay ranges, confirm the loop on the first call, keep gaps under 48 hours. Data consistently shows higher apply rates and lower churn when ranges are listed. The full hiring playbook is here: snakesignals.com/#hiring-playbooks. Supporting context on salary transparency and apply rates is broadly aligned across recent platform studies.
For candidates: expect a short take-home and a live review. If you used AI to draft code, be ready to explain it line by line.
What to actually do this week
Pin uv 0.9.10 on one service, measure CI before and after, then lock if it pays off.
Bump Ruff to 0.14.5 in pre-commit. Ship new checks as warnings for one sprint.
Trial pytest 9.0.1 on a branch. Watch for plugin compatibility and confirm SkipTest behavior.
If you run FastAPI, take 0.121.2 mid-week. If you install
fastapi[standard], you get the Cloud CLI.Data teams: bump to NumPy 2.3.5 where the matrix is green.
Agent teams: check pydantic-ai 1.18.0 and the new Gateway beta.
Security: enable phishing-resistant 2FA for PyPI and rotate any tokens if you hit a spoofed site.
If the website has helped already or might help in the future, share it with someone who builds or hires in Python. New readers can join at snakesignals.com.
Hiring? Contact
Josh Smith
LinkedIn: https://www.linkedin.com/in/python-recruitment/
Email: [email protected]
Phone: 01727 225 552