Bump the python-production group in /pydatalab with 7 updates#1891
Open
dependabot[bot] wants to merge 1 commit into
Open
Bump the python-production group in /pydatalab with 7 updates#1891dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the python-production group in /pydatalab with 7 updates: | Package | From | To | | --- | --- | --- | | [matplotlib](https://github.com/matplotlib/matplotlib) | `3.10.8` | `3.10.9` | | [pymongo](https://github.com/mongodb/mongo-python-driver) | `4.16.0` | `4.17.0` | | [tomlkit](https://github.com/python-poetry/tomlkit) | `0.14.0` | `0.15.0` | | [flask-cors](https://github.com/corydolphin/flask-cors) | `6.0.2` | `6.0.5` | | [pyjwt](https://github.com/jpadilla/pyjwt) | `2.12.1` | `2.13.0` | | [tiktoken](https://github.com/openai/tiktoken) | `0.12.0` | `0.13.0` | | [transformers](https://github.com/huggingface/transformers) | `5.5.4` | `5.12.1` | Updates `matplotlib` from 3.10.8 to 3.10.9 - [Release notes](https://github.com/matplotlib/matplotlib/releases) - [Commits](matplotlib/matplotlib@v3.10.8...v3.10.9) Updates `pymongo` from 4.16.0 to 4.17.0 - [Release notes](https://github.com/mongodb/mongo-python-driver/releases) - [Changelog](https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst) - [Commits](mongodb/mongo-python-driver@4.16.0...4.17.0) Updates `tomlkit` from 0.14.0 to 0.15.0 - [Release notes](https://github.com/python-poetry/tomlkit/releases) - [Changelog](https://github.com/python-poetry/tomlkit/blob/master/CHANGELOG.md) - [Commits](python-poetry/tomlkit@0.14.0...0.15.0) Updates `flask-cors` from 6.0.2 to 6.0.5 - [Release notes](https://github.com/corydolphin/flask-cors/releases) - [Changelog](https://github.com/corydolphin/flask-cors/blob/main/CHANGELOG.md) - [Commits](corydolphin/flask-cors@6.0.2...6.0.5) Updates `pyjwt` from 2.12.1 to 2.13.0 - [Release notes](https://github.com/jpadilla/pyjwt/releases) - [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst) - [Commits](jpadilla/pyjwt@2.12.1...2.13.0) Updates `tiktoken` from 0.12.0 to 0.13.0 - [Release notes](https://github.com/openai/tiktoken/releases) - [Changelog](https://github.com/openai/tiktoken/blob/main/CHANGELOG.md) - [Commits](openai/tiktoken@0.12.0...0.13.0) Updates `transformers` from 5.5.4 to 5.12.1 - [Release notes](https://github.com/huggingface/transformers/releases) - [Commits](huggingface/transformers@v5.5.4...v5.12.1) --- updated-dependencies: - dependency-name: matplotlib dependency-version: 3.10.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-production - dependency-name: pymongo dependency-version: 4.17.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-production - dependency-name: tomlkit dependency-version: 0.15.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-production - dependency-name: flask-cors dependency-version: 6.0.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-production - dependency-name: pyjwt dependency-version: 2.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-production - dependency-name: tiktoken dependency-version: 0.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-production - dependency-name: transformers dependency-version: 5.12.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-production ... Signed-off-by: dependabot[bot] <support@github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the python-production group in /pydatalab with 7 updates:
3.10.83.10.94.16.04.17.00.14.00.15.06.0.26.0.52.12.12.13.00.12.00.13.05.5.45.12.1Updates
matplotlibfrom 3.10.8 to 3.10.9Release notes
Sourced from matplotlib's releases.
Commits
dd8d78bREL: v3.10.92fb1891REL: Release prep v3.10.9d0e923aMerge branch 'v3.10.8-doc' into v3.10.x1637932Merge pull request #31558 from meeseeksmachine/auto-backport-of-pr-31556-on-v...a83faacBackport PR #31556: FIX: Inverted PyErr_Occurred check in enum type caster (_...a4f57abMerge pull request #31545 from ksunden/backport-of-pr-31282-on-v3.10.x063288dMerge pull request #31544 from ksunden/backport-of-pr-31248-on-v3.10.xb2ed196Backport PR #31248: SEC: Remove eval() from validate_cycleracc6024Merge pull request #31282 from scottshambaugh/tex_no_shelle3fb541Merge pull request #31078 from meeseeksmachine/auto-backport-of-pr-31075-on-v...Updates
pymongofrom 4.16.0 to 4.17.0Release notes
Sourced from pymongo's releases.
... (truncated)
Changelog
Sourced from pymongo's changelog.
Commits
f2103a9Prep branch v4.173491c08PYTHON-5801 - Update changelog for 4.17 release (#2762)912ef33PYTHON-5798 - Overload retargeting prose tests do not ensure that sec… (#2760)b4e2c03PYTHON-5800 - Simple collation is included in index information (#2761)f31ba09PYTHON-5797 - Add IWM and Overload Error links to changelog (#2757)5da9183PYTHON-5794 - Add prose tests to verify correct retry behavior when a… (#2755)35e51a5Revert "PYTHON-5768 Add AGENTS.md w/copilot instructions" (#2744) (#2754)f41dd5cPYTHON-5772 Increase _gcp_helpers.py coverage (#2749)49e7a05PYTHON-5760 Increase _azure_helpers.py coverage (#2747)a2b0cd8PYTHON-5795 Fix absolute link to CONTRIBUTING.md in README.md (#2756)Updates
tomlkitfrom 0.14.0 to 0.15.0Release notes
Sourced from tomlkit's releases.
Changelog
Sourced from tomlkit's changelog.
Commits
8694e4dchore: bump version to 0.15.0 and update changelog for release (#473)e636a51[pre-commit.ci] pre-commit autoupdate (#472)96a4d22fix: fix a parser hang (#470)843f799[pre-commit.ci] pre-commit autoupdate (#469)2c87eafHonor sort_keys for parsed TOML documents (#471)8e32f9cType annotations (#460)df98af4[pre-commit.ci] pre-commit autoupdate (#461)4bd97dbchore(deps): bump requests from 2.32.4 to 2.33.0 in /docs (#462)b2d7030chore(deps-dev): bump pygments from 2.17.2 to 2.20.0 (#463)87d98b1chore(deps): bump pygments from 2.18.0 to 2.20.0 in /docs (#464)Updates
flask-corsfrom 6.0.2 to 6.0.5Release notes
Sourced from flask-cors's releases.
Commits
91ebc49Typing Hotfix: support blueprints in the type systemd601665Add strict MyPy Typingc8e8871Harden release publishing workflow (#406)e1d4034Derive package version from git tag via setuptools-scm (#405)Updates
pyjwtfrom 2.12.1 to 2.13.0Release notes
Sourced from pyjwt's releases.
Changelog
Sourced from pyjwt's changelog.
Commits
7144e45Apply ruff formatd2f4becRestorecast()calls with cross-versiontype: ignoreforprepare_key22f478cRemove redundant casts inRSAAlgorithm.prepare_keyand `ECAlgorithm.prepare...95791b1Bundle security fixes and hardening into 2.13.0dcc27a9[pre-commit.ci] pre-commit autoupdate (#1155)9d08a9a[pre-commit.ci] pre-commit autoupdate (#1146)b87c100Bump codecov/codecov-action from 5 to 6 (#1154)40e3147Migrate development extras to dependency groups (#1152)Updates
tiktokenfrom 0.12.0 to 0.13.0Changelog
Sourced from tiktoken's changelog.
Commits
fa8b65dPartial sync of codebase (#543)dcb3928[codex] Pin GitHub Actions workflow references (#515)6ec8149Partial sync of codebase (#495)6ad70b2Upgrade GitHub Actions for Node 24 compatibility (#472)Updates
transformersfrom 5.5.4 to 5.12.1Release notes
Sourced from transformers's releases.
... (truncated)
Commits
ddb849av5.12.1d81db16mistral common backend fix (#46667)07c294cFixpeftlower bound (#46605)e0e7504Revert "fix security issue with allow all kernels"7904f30fix security issue with allow all kernelsd77d573fix kernel pathf7999c7v5.12.04c5d4fdAdd minimax m3vl (#46600)5957e6f[CI] capture checkers output in OTEL (#46601)2d68208Lfm2: threadseq_idxthrough ShortConv for packed/varlen inputs (#46588)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions