Update numexpr requirement from !=2.8.6,<=2.8.8 to !=2.8.6,<=2.9.0 in /.github/dependabot

[dependabot[bot]]

Updates the requirements on numexpr to permit the latest version.

Changelog

Sourced from numexpr's changelog.

Changes from 2.9.0 to 2.9.1

• Under development.

Changes from 2.8.8 to 2.9.0

• Support for PyPy (see PRs #467 and #740). The full test suite should pass now, at least for the 3.10 version. Thanks to @​27rabbitlt for most of the work and @​mgorny and @​mattip for providing help and additional fixes. Fixes #463.

• Fixed more sanitizer issues (see PR #469). Thanks to @​27rabbitlt.

• Modernized the test suite to avoid some warnings.

Changes from 2.8.7 to 2.8.8

• Fix re_evaluate not taking global_dict as argument. Thanks to Teng Liu (@​27rabbitlt).

• Fix parsing of simple complex numbers. Now, ne.evaluate('1.5j') works. Thanks to Teng Liu (@​27rabbitlt).

• Fixes for upcoming NumPy 2.0:

  • Replace npy_cdouble with C++ complex. Thanks to Teng Liu (@​27rabbitlt).
  • Add NE_MAXARGS for future numpy change NPY_MAXARGS. Now it is set to 64 to match NumPy 2.0 value. Thanks to Teng Liu (@​27rabbitlt).

Changes from 2.8.6 to 2.8.7

• More permissive rules in sanitizing regular expression: allow to access digits after the . with scientific notation. Thanks to Thomas Vincent.

• Don't reject double underscores that are not at the start or end of a variable name (pandas uses those), or scientific-notation numbers with digits after the decimal point. Thanks to Rebecca Palmer.

• Do not use numpy.alltrue in the test suite, as it has been deprecated (replaced by numpy.all). Thanks to Rebecca Chen.

• Wheels for Python 3.12. Wheels for 3.7 and 3.8 are not generated anymore.

Changes from 2.8.5 to 2.8.6

... (truncated)

Commits

• 3bdab2a Revert the change for the test generator (will fix another day :-)
• 33a6ad3 Add a note about modernized test suite
• e894e08 Fix some warnings with modern pytest
• a3d4bbc Getting ready for release 2.9.0
• bd3316b Merge pull request #470 from mgorny/getrefcount
• bec47c7 Merge pull request #467 from 27rabbitlt/fix_pypy_dict_pointer_nonnull
• 55ae6d1 Skip test requiring sys.getrefcount() on PyPy
• 808221d Merge pull request #469 from 27rabbitlt/fix_san_ex_string_literal
• 7d20bf6 fix sanitizer forbid colon within quotes
• 8376c9f fix: underpypy, no dict args, kwds is non-null
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.