search

European-XFEL / EXtra-geom

Use EuXFEL detector geometry to assemble images
https://extra-geom.rtfd.io
BSD 3-Clause "New" or "Revised" License
5 stars 4 forks source link

Bump numexpr from 2.8.4 to 2.8.6 in /.github/dependabot #245

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps numexpr from 2.8.4 to 2.8.6.

Changelog

Sourced from numexpr's changelog.

Changes from 2.8.6 to 2.8.7

** Under development **

Changes from 2.8.5 to 2.8.6

  • The sanitization can be turned off by default by setting an environment variable,

    set NUMEXPR_SANITIZE=0

  • Improved behavior of the blacklist to avoid triggering on private variables and scientific notation numbers.

Commits
  • 9c70b43 Pre-release actions for 2.8.6
  • 71e4f75 Add support for NUMEXPR_SANITIZE=0 environment variable to turn off sanitiz...
  • 7d377e3 Merge branch 'master' of https://github.com/pydata/numexpr
  • 9b380ae Add santize=True kwarg to stringToExpression and allow numbers with scienti...
  • c1b55e5 Merge pull request #446 from keszybz/syntax-warning-fix
  • 022df94 Use r"" to avoid warning about unknown escapes
  • 397cc98 Add in argument to validate/evaluate for whether to sanitize or not; also imp...
  • bfb900f Merge pull request #445 from cgohlke/master-1
  • 23537bd Fix syntax error when building with USE_VML
  • 209081b Post 2.8.5 release actions done
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
takluyver commented 1 year ago

This breaks PyFAI, so not merging. Hopefully another release soon will fix it.

https://github.com/pydata/numexpr/issues/449

dependabot[bot] commented 1 year ago

Superseded by #248.