Bump the actions group with 6 updates #84

dependabot · 2024-04-01T19:28:01Z

Bumps the actions group with 6 updates:

Package	From	To
altair	`5.2.0`	`5.3.0`
ipywidgets	`8.1.1`	`8.1.2`
jupyterlab-language-pack-zh-cn	`4.0.post6`	`4.1.post2`
matplotlib	`3.8.2`	`3.8.3`
pandas	`2.2.0`	`2.2.1`
ruff	`0.2.0`	`0.3.5`

Updates altair from 5.2.0 to 5.3.0

Release notes

Sourced from altair's releases.

Version 5.3.0

What's Changed

Update Vega-Lite from version 5.16.3 to version 5.17.0; see Vega-Lite Release Notes

Enhancements

Add "jupyter" renderer which uses JupyterChart for rendering (#3283). See Displaying Altair Charts for more information.

Add integration of VegaFusion and JupyterChart to support data transformations in the Python kernel for interactive charts (#3281). See VegaFusion Data Transformer for more information.

Add embed_options argument to JupyterChart to allow customization of Vega Embed options (#3304)

Add offline support for JupyterChart and the new "jupyter" renderer. See JupyterChart - Offline Usage for more information.

Add "browser" renderer to support displaying Altair charts in an external web browser. See Browser Renderer for more information (#3379).

Add a new section to documentation on dashboards which have support for Altair (#3299)

Support restrictive FIPS-compliant environment (#3291)

Support opening charts in the Vega editor with chart.open_editor() (#3358)

Simplify type-hints to improve the readability of the function signature and docstring (#3307)

Support installation of all optional dependencies via python -m pip install altair[all] and conda install altair-all -c conda-forge (#3354)

Add privacy friendly web-analytics for the documentation (#3350)

Additional gallery examples and documentation clarifications (#3233, #3266, #3276, #3282, #3298, #3299, #3323, #3334, #3324, #3340, #3350, #3353, #3357, #3362, #3363)

Bug Fixes

Fix error when embed_options are None (#3376)

Fix type hints for libraries such as Polars where Altair uses the dataframe interchange protocol (#3297)

Fix anywidget deprecation warning (#3364)

Fix handling of Date32 columns in arrow tables and Polars DataFrames (#3377)

Backward-Incompatible Changes

Changed hash function from md5 to a truncated sha256 non-cryptograhic hash (#3291)

Updated chart.show() method to invoke the active renderer rather than depend on altair_saver (Which was never updated for use with Altair 5) (#3379).

Release notes by pull requests

perf: Improve performance of Chart.from_dict by @RobinL in altair-viz/altair#3383

feature: Add browser renderer to open charts in external browser and update chart.show() to display chart by @jonmmease in altair-viz/altair#3379

fix: Don't error when embed_options are None by @jonmmease in altair-viz/altair#3376

fix: Handle Date32 columns in Arrow tables and Polars DataFrames by @jonmmease in altair-viz/altair#3377

fix: Support falling back to pandas when pyarrow is installed but too old by @jonmmease in altair-viz/altair#3387

docs: Remove release notes and fully capture them in GitHub Releases by @binste in altair-viz/altair#3380

Update save.py to use utf-8 instead of None per default by @franzhaas in altair-viz/altair#3278

Consolidate governance documents in Vega Organization by @domoritz in altair-viz/altair#3277

doc: histogram with gradient color by @mattijn in altair-viz/altair#3282

Update for FIPS Compliance by @ccravens in altair-viz/altair#3291

Docs: Fix link to project governance docs by @binste in altair-viz/altair#3298

Fix type checker errors for libraries such as Polars where Altair uses dataframe interchange protocol by @binste in altair-viz/altair#3297

Integrate VegaFusion into JupyterChart by @jonmmease in altair-viz/altair#3281

Add "jupyter" renderer based on JupyterChart by @jonmmease in altair-viz/altair#3283

Docs: Add section on displaying Altair charts in dashboards by @binste in altair-viz/altair#3299

Validate version of vegafusion-python-embed by @jonmmease in altair-viz/altair#3303

Add embed_options to JupyterChart and pass them through in "jupyter" renderer by @jonmmease in altair-viz/altair#3304

Add offline support to JupyterChart and "jupyter" renderer by @jonmmease in altair-viz/altair#3305

... (truncated)

Commits

4a2e7f1 chore: bump version to 5.3.0
86c5411 docs: Fix numpy tooltip images example
439c253 chore: Update releasing instructions
51aa57f chore: Add templates for PRs and automated release notes (#3381)
d5b0736 feature: Add browser renderer to open charts in external browser and update c...
d09b7de docs: Remove release notes and fully capture them in GitHub Releases (#3380)
2786dd3 Catch RuntimeError along with ImportError in pyarrow_available (#3387)
e20cdef perf: Improve performance of Chart.from_dict (#3383)
c7c4149 fix: Handle Date32 columns in Arrow tables and Polars DataFrames (#3377)
b1b9dba fix: Don't error when embed_options are None (#3376)
Additional commits viewable in compare view

Updates ipywidgets from 8.1.1 to 8.1.2

Release notes

Sourced from ipywidgets's releases.

Release 8.1.2

What's Changed

Bump systeminformation from 5.18.3 to 5.21.8 in /ui-tests by @dependabot in jupyter-widgets/ipywidgets#3837

Try to use manager's latexTypesetter if window.MathJax is not defined by @bollwyvl in jupyter-widgets/ipywidgets#3847

fix: restoring widgets from saved state is broken since v8 in Lab by @mariobuikhuizen in jupyter-widgets/ipywidgets#3866

Full Changelog: jupyter-widgets/ipywidgets@8.1.1...8.1.2

Commits

See full diff in compare view

Updates jupyterlab-language-pack-zh-cn from 4.0.post6 to 4.1.post2

Commits

92b5055 Update language packs to '4.1.post2' (#655)
703ece7 Fix upload artifacts in release_publish.yml (#654)
59b74a7 New releases (#653)
3ea732c Update language packs to '4.1.post1' (#652)
e6e15f8 Update pot files (#651)
8c03aed New releases (#650)
da75578 New Crowdin updates (#649)
9b0d2b2 Update pot files (#648)
31620d4 New releases (#647)
610da63 New releases (#646)
Additional commits viewable in compare view

Updates matplotlib from 3.8.2 to 3.8.3

Release notes

Sourced from matplotlib's releases.

REL: v3.8.3

This is the third micro release of the 3.8 series.

Highlights of the 3.8.3 release include:

Improvements to the MacOS backend

Fix hanging on plt.pause

Fix warnings about "Secure coding is not enabled for restorable state"

Fix crash at exit for PGF backend

Commits

9e18a34 REL: v3.8.3
bd96955 Release prep v3.8.3
3ebebc7 Fix merge conflicts from v3.8.2-doc
8fff5b1 Merge pull request #27790 from meeseeksmachine/auto-backport-of-pr-27785-on-v...
c21a93f Merge pull request #27789 from meeseeksmachine/auto-backport-of-pr-27756-on-v...
ea407e1 Backport PR #27785: FIX: be careful about communicating with subprocess
2efbf7e Backport PR #27756: Add protections against infinite loop in bezier calculations
95b5eb4 Merge pull request #27779 from ksunden/ci_backports
8cd2c91 Merge pull request #27778 from meeseeksmachine/auto-backport-of-pr-27773-on-v...
bef02fa Bump the actions group with 2 updates
Additional commits viewable in compare view

Updates pandas from 2.2.0 to 2.2.1

Release notes

Sourced from pandas's releases.

Pandas 2.2.1

We are pleased to announce the release of pandas 2.2.1. This release includes some new features, bug fixes, and performance improvements. We recommend that all users upgrade to this version.

See the full whatsnew for a list of all the changes. Pandas 2.2.1 supports Python 3.9 and higher.

The release will be available on the defaults and conda-forge channels:
conda install pandas
Or via PyPI:
python3 -m pip install --upgrade pandas
Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

Commits

bdc79c1 RLS: 2.2.1
470b886 Backport PR #57582 on branch 2.2.x (DOC: Add contributors for 2.2.1) (#57583)
541448e RLS: 2.2.1
bdbb179 Backport PR #57576 on branch 2.2.x (DOC: Add release date for 2.2.1) (#57579)
5521dc9 Backport PR #57314 on branch 2.2.x (BUG: Fix near-minimum timestamp handling)...
ea56e0c Backport PR #57556 on branch 2.2.x (Remove PyArrow deprecation warning) (#57568)
3bfedfe Backport PR #57551: BLD: Add pyarrow extra for pip installation (#57557)
3a4033c Backport PR #57439 on branch 2.2.x (BUG: read_json returning Index instead of...
c101d30 Backport PR #57510 on branch 2.2.x (DOC: Fix xarray example) (#57538)
0b49cf3 Backport PR #57536 on branch 2.2.x (BUG: dt64 + DateOffset with milliseconds)...
Additional commits viewable in compare view

Updates ruff from 0.2.0 to 0.3.5

Release notes

Sourced from ruff's releases.

v0.3.5

Changes

Preview features

[pylint] Implement modified-iterating-set (E4703) (#10473)

[refurb] Implement for-loop-set-mutations (FURB142) (#10583)

[refurb] Implement unnecessary-from-float (FURB164) (#10647)

[refurb] Implement verbose-decimal-constructor (FURB157) (#10533)

Rule changes

[flake8-comprehensions] Handled special case for C401 which also matches C416 (#10596)

[flake8-pyi] Mark unaliased-collections-abc-set-import fix as "safe" for more cases in stub files (PYI025) (#10547)

[numpy] Add row_stack to NumPy 2.0 migration rule (#10646)

[pycodestyle] Allow cell magics before an import (E402) (#10545)

[pycodestyle] Avoid blank line rules for the first logical line in cell (#10291)

Configuration

Respected nested namespace packages (#10541)

[flake8-boolean-trap] Add setting for user defined allowed boolean trap (#10531)

Bug fixes

Correctly handle references in __all__ definitions when renaming symbols in autofixes (#10527)

Track ranges of names inside __all__ definitions (#10525)

[flake8-bugbear] Avoid false positive for usage after continue (B031) (#10539)

[flake8-copyright] Accept commas in default copyright pattern (#9498)

[flake8-datetimez] Allow f-strings with %z for DTZ007 (#10651)

[flake8-pytest-style] Fix PT014 autofix for last item in list (#10532)

[flake8-quotes] Ignore Q000, Q001 when string is inside forward ref (#10585)

[isort] Always place non-relative imports after relative imports (#10669)

[isort] Respect Unicode characters in import sorting (#10529)

[pyflakes] Fix F821 false negatives when from __future__ import annotations is active (attempt 2) (#10524)

[pyflakes] Make unnecessary-lambda an always-unsafe fix (#10668)

[pylint] Fixed false-positive on the rule PLW1641 (eq-without-hash) (#10566)

[ruff] Fix panic in unused # noqa removal with multi-byte space (RUF100) (#10682)

Documentation

Add PR title format to CONTRIBUTING.md (#10665)

Fix list markup to include blank lines required (#10591)

Put flake8-logging next to the other flake8 plugins in registry (#10587)

[flake8-bandit] Update warning message for rule S305 to address insecure block cipher mode use (#10602)

[flake8-bugbear] Document use of anonymous assignment in useless-expression (#10551)

[flake8-datetimez] Clarify error messages and docs for DTZ rules (#10621)

[pycodestyle] Use same before vs. after numbers for space-around-operator (#10640)

[ruff] Change quadratic-list-summation docs to use iadd consistently (#10666)

... (truncated)

Changelog

Sourced from ruff's changelog.

0.3.5

Preview features

[pylint] Implement modified-iterating-set (E4703) (#10473)

[refurb] Implement for-loop-set-mutations (FURB142) (#10583)

[refurb] Implement unnecessary-from-float (FURB164) (#10647)

[refurb] Implement verbose-decimal-constructor (FURB157) (#10533)

Rule changes

[flake8-comprehensions] Handled special case for C401 which also matches C416 (#10596)

[flake8-pyi] Mark unaliased-collections-abc-set-import fix as "safe" for more cases in stub files (PYI025) (#10547)

[numpy] Add row_stack to NumPy 2.0 migration rule (#10646)

[pycodestyle] Allow cell magics before an import (E402) (#10545)

[pycodestyle] Avoid blank line rules for the first logical line in cell (#10291)

Configuration

Respected nested namespace packages (#10541)

[flake8-boolean-trap] Add setting for user defined allowed boolean trap (#10531)

Bug fixes

Correctly handle references in __all__ definitions when renaming symbols in autofixes (#10527)

Track ranges of names inside __all__ definitions (#10525)

[flake8-bugbear] Avoid false positive for usage after continue (B031) (#10539)

[flake8-copyright] Accept commas in default copyright pattern (#9498)

[flake8-datetimez] Allow f-strings with %z for DTZ007 (#10651)

[flake8-pytest-style] Fix PT014 autofix for last item in list (#10532)

[flake8-quotes] Ignore Q000, Q001 when string is inside forward ref (#10585)

[isort] Always place non-relative imports after relative imports (#10669)

[isort] Respect Unicode characters in import sorting (#10529)

[pyflakes] Fix F821 false negatives when from __future__ import annotations is active (attempt 2) (#10524)

[pyflakes] Make unnecessary-lambda an always-unsafe fix (#10668)

[pylint] Fixed false-positive on the rule PLW1641 (eq-without-hash) (#10566)

[ruff] Fix panic in unused # noqa removal with multi-byte space (RUF100) (#10682)

Documentation

Add PR title format to CONTRIBUTING.md (#10665)

Fix list markup to include blank lines required (#10591)

Put flake8-logging next to the other flake8 plugins in registry (#10587)

[flake8-bandit] Update warning message for rule S305 to address insecure block cipher mode use (#10602)

[flake8-bugbear] Document use of anonymous assignment in useless-expression (#10551)

[flake8-datetimez] Clarify error messages and docs for DTZ rules (#10621)

[pycodestyle] Use same before vs. after numbers for space-around-operator (#10640)

[ruff] Change quadratic-list-summation docs to use iadd consistently (#10666)

0.3.4

... (truncated)

Commits

200ebee Bump version to v0.3.5 (#10717)
23e8279 chore(deps): update npm development dependencies (#10716)
221b323 chore(deps): update strum to 0.26.0 (#10715)
a0e1544 chore(deps): update rust crate pep440_rs to 0.5.0 (#10703)
2740fab Renovate: group all strum dependencies together (#10714)
7042b9b fix(deps): update rust crate similar to v2.5.0 (#10711)
4047d45 chore(deps): update rust crate insta to v1.38.0 (#10701)
20d69ea chore(deps): update npm development dependencies (#10697)
d021cac chore(deps): update rust crate tracing-tree to 0.3.0 (#10709)
46369d4 chore(deps): update rust crate uuid to v1.8.0 (#10710)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the actions group with 6 updates: | Package | From | To | | --- | --- | --- | | [altair](https://github.com/altair-viz/altair) | `5.2.0` | `5.3.0` | | [ipywidgets](https://github.com/jupyter-widgets/ipywidgets) | `8.1.1` | `8.1.2` | | [jupyterlab-language-pack-zh-cn](https://github.com/jupyterlab/language-packs) | `4.0.post6` | `4.1.post2` | | [matplotlib](https://github.com/matplotlib/matplotlib) | `3.8.2` | `3.8.3` | | [pandas](https://github.com/pandas-dev/pandas) | `2.2.0` | `2.2.1` | | [ruff](https://github.com/astral-sh/ruff) | `0.2.0` | `0.3.5` | Updates `altair` from 5.2.0 to 5.3.0 - [Release notes](https://github.com/altair-viz/altair/releases) - [Commits](vega/altair@v5.2.0...v5.3.0) Updates `ipywidgets` from 8.1.1 to 8.1.2 - [Release notes](https://github.com/jupyter-widgets/ipywidgets/releases) - [Commits](jupyter-widgets/ipywidgets@8.1.1...8.1.2) Updates `jupyterlab-language-pack-zh-cn` from 4.0.post6 to 4.1.post2 - [Release notes](https://github.com/jupyterlab/language-packs/releases) - [Changelog](https://github.com/jupyterlab/language-packs/blob/main/RELEASE.md) - [Commits](https://github.com/jupyterlab/language-packs/compare/ar-SA@v4.0.post6...ar-SA@v4.1.post2) Updates `matplotlib` from 3.8.2 to 3.8.3 - [Release notes](https://github.com/matplotlib/matplotlib/releases) - [Commits](matplotlib/matplotlib@v3.8.2...v3.8.3) Updates `pandas` from 2.2.0 to 2.2.1 - [Release notes](https://github.com/pandas-dev/pandas/releases) - [Commits](pandas-dev/pandas@v2.2.0...v2.2.1) Updates `ruff` from 0.2.0 to 0.3.5 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](astral-sh/ruff@v0.2.0...v0.3.5) --- updated-dependencies: - dependency-name: altair dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: ipywidgets dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: jupyterlab-language-pack-zh-cn dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: matplotlib dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: pandas dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2024-05-01T19:17:23Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 1, 2024

github-actions bot added the maintenance label Apr 1, 2024

dependabot bot closed this May 1, 2024

dependabot bot deleted the dependabot/pip/actions-ae30c85810 branch May 1, 2024 19:17

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the actions group with 6 updates #84

Bump the actions group with 6 updates #84

dependabot bot commented on behalf of github Apr 1, 2024 •

edited

Loading

dependabot bot commented on behalf of github May 1, 2024

Bump the actions group with 6 updates #84

Bump the actions group with 6 updates #84

Conversation

dependabot bot commented on behalf of github Apr 1, 2024 • edited Loading

Version 5.3.0

What's Changed

Enhancements

Bug Fixes

Backward-Incompatible Changes

Release notes by pull requests

Release 8.1.2

What's Changed

REL: v3.8.3

Pandas 2.2.1

v0.3.5

Changes

Preview features

Rule changes

Configuration

Bug fixes

Documentation

0.3.5

Preview features

Rule changes

Configuration

Bug fixes

Documentation

0.3.4

dependabot bot commented on behalf of github May 1, 2024

dependabot bot commented on behalf of github Apr 1, 2024 •

edited

Loading