Bump hikari from 2.3.5 to 2.4.1

[dependabot]

Bumps hikari from 2.3.5 to 2.4.1.

Release notes

Sourced from hikari's releases.

2.4.1 (2025-09-08)

Bugfixes

• Properly release initial bucket lock. (#2529)

2.4.0 (2025-09-08)

Breaking Changes

• Remove PREMIUM_REQUIRED response support
  • Use PREMIUM button components instead (#2454)

Features

• Add parent_id and lock_permissions to rest.reposition_channels (#2238)
• Add support for fetching and editing guild onboarding (rest.fetch_guild_onboarding, rest.edit_guild_onboarding) (#2337)
• Add PREMIUM button support (#2454)
• Add primary_guild user feature. (#2469)
• Add InteractionCallbackResponse object that gets returned in the initial response to an interaction (#2479)
• Add PIN_MESSAGES permission. (#2498)
• Add iterator pins feature. (#2501)
• Add code_verifier field to authorize_access_token for PKCE use-cases (#2510)
• Further improve ratelimiting to track in-flight requests (#2515)

Bugfixes

• Always send allowed_mentions when editing a message to match functionality that documentation mentions (#2447)
• Improve ratelimit handling when starting bot in the middle of a ratelimit window (#2452)
• Fix OAuth2AuthorizationToken.refresh_token typehint being int instead of str (#2493)
• Properly handle ratelimit buckets with fixed periods (#2506)
• fetch_guild_invites will now return a sequence of invites (no metadata) if you only have the VIEW_AUDIT_LOG permission (#2509)

Documentation Improvements

• Improve documentation for GuildReactionDeleteEmojiEvent and DMReactionDeleteEmojiEvent (#2450)

Changelog

Sourced from hikari's changelog.

2.4.1 (2025-09-08)

Bugfixes

• Properly release initial bucket lock. (#2529)

---

2.4.0 (2025-09-08)

Breaking Changes

• Remove PREMIUM_REQUIRED response support
  • Use PREMIUM button components instead (#2454)

Features

• Add parent_id and lock_permissions to rest.reposition_channels (#2238)
• Add support for fetching and editing guild onboarding (rest.fetch_guild_onboarding, rest.edit_guild_onboarding) (#2337)
• Add PREMIUM button support (#2454)
• Add primary_guild user feature. (#2469)
• Add InteractionCallbackResponse object that gets returned in the initial response to an interaction (#2479)
• Add PIN_MESSAGES permission. (#2498)
• Add iterator pins feature. (#2501)
• Add code_verifier field to authorize_access_token for PKCE use-cases (#2510)
• Further improve ratelimiting to track in-flight requests (#2515)

Bugfixes

• Always send allowed_mentions when editing a message to match functionality that documentation mentions (#2447)
• Improve ratelimit handling when starting bot in the middle of a ratelimit window (#2452)
• Fix OAuth2AuthorizationToken.refresh_token typehint being int instead of str (#2493)
• Properly handle ratelimit buckets with fixed periods (#2506)
• fetch_guild_invites will now return a sequence of invites (no metadata) if you only have the VIEW_AUDIT_LOG permission (#2509)

Documentation Improvements

• Improve documentation for GuildReactionDeleteEmojiEvent and DMReactionDeleteEmojiEvent (#2450)

---

Commits

• d128f8d Prepare for release of 2.4.1 (#2530)
• 5a33d38 fix: properly release bucket lock (#2529)
• e04efe1 Bump to development version (2.4.1.dev0)
• 59c6500 Prepare for release of 2.4.0 (#2528)
• f37e6bd Lock file maintenance (#2527)
• 660e475 Update dependency mkdocs-material to v9.6.19 (#2526)
• 968c9b3 Update dependency pytest-cov to v6.3.0 (#2525)
• ee9fcf6 Update dependency ruff to v0.12.12 (#2521)
• 4f1d2dc Update codecov/codecov-action action to v5.5.1 (#2519)
• 642389c Update dependency pytest to v8.4.2 (#2520)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.