build(deps): bump the python-packages group across 1 directory with 7 updates

[dependabot[bot]]

Updates the requirements on ruff, tox, numpy, torch, horde-engine, horde-model-reference and qrcode to permit the latest version. Updates ruff from 0.6.5 to 0.6.8

Release notes

Sourced from ruff's releases.

0.6.8

Release Notes

Preview features

• Remove unnecessary parentheses around match case clauses (#13510)
• Parenthesize overlong if guards in match..case clauses (#13513)
• Detect basic wildcard imports in ruff analyze graph (#13486)
• [pylint] Implement boolean-chained-comparison (R1716) (#13435)

Rule changes

• [lake8-simplify] Detect SIM910 when using variadic keyword arguments, i.e., **kwargs (#13503)
• [pyupgrade] Avoid false negatives with non-reference shadowed bindings of loop variables (UP028) (#13504)

Bug fixes

• Detect tuples bound to variadic positional arguments i.e. *args (#13512)
• Exit gracefully on broken pipe errors (#13485)
• Avoid panic when analyze graph hits broken pipe (#13484)

Performance

• Reuse BTreeSets in module resolver (#13440)
• Skip traversal for non-compound statements (#13441)

Contributors

• @​MichaReiser
• @​TomerBin
• @​charliermarsh
• @​diceroll123
• @​dylwil3
• @​haarisr
• @​renovate
• @​sbrugman
• @​vincevannoort
• @​zanieb

Install ruff 0.6.8

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.6.8/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

... (truncated)

Changelog

Sourced from ruff's changelog.

0.6.8

Preview features

• Remove unnecessary parentheses around match case clauses (#13510)
• Parenthesize overlong if guards in match..case clauses (#13513)
• Detect basic wildcard imports in ruff analyze graph (#13486)
• [pylint] Implement boolean-chained-comparison (R1716) (#13435)

Rule changes

• [lake8-simplify] Detect SIM910 when using variadic keyword arguments, i.e., **kwargs (#13503)
• [pyupgrade] Avoid false negatives with non-reference shadowed bindings of loop variables (UP028) (#13504)

Bug fixes

• Detect tuples bound to variadic positional arguments i.e. *args (#13512)
• Exit gracefully on broken pipe errors (#13485)
• Avoid panic when analyze graph hits broken pipe (#13484)

Performance

• Reuse BTreeSets in module resolver (#13440)
• Skip traversal for non-compound statements (#13441)

0.6.7

Preview features

• Add Python version support to ruff analyze CLI (#13426)
• Add exclude support to ruff analyze (#13425)
• Fix parentheses around return type annotations (#13381)

Rule changes

• [pycodestyle] Fix: Don't autofix if the first line ends in a question mark? (D400) (#13399)

Bug fixes

• Respect lint.exclude in ruff check --add-noqa (#13427)

Performance

• Avoid tracking module resolver files in Salsa (#13437)
• Use forget for module resolver database (#13438)

0.6.6

Preview features

... (truncated)

Commits

• ae39ce5 Bump version to 0.6.8 (#13522)
• ff2d214 Don't skip over imports and other nodes containing nested statements in impor...
• 9442cd8 Parenthesize match..case if guards (#13513)
• 8012707 Align formatting of patterns in match-cases with expression formatting in cla...
• d7ffe46 Disable the typeset plugin (#13517)
• 7c83af4 red-knot: Implement the not operator for all Type variants (#13432)
• bbb044e Detect tuples bound to variadic positional arguments i.e. *args (#13512)
• 4810652 Avoid UP028 false negatives with non-reference shadowed bindings of loop vari...
• 11f06e0 Detect SIM910 when using variadic keyword arguments, i.e., **kwargs (#13503)
• f27a8b8 [internal] ComparableExpr (f)strings and bytes made invariant under concate...
• Additional commits viewable in compare view

Updates tox to 4.21.0

Changelog

Sourced from tox's changelog.

v4.21.0 (2024-09-30)

Features - 4.21.0

- Native TOML configuration support - by :user:`gaborbernat`. (:issue:`999`)
Improved Documentation - 4.21.0

• Update Loader docs - by :user:ziima (:issue:3352)

v4.20.0 (2024-09-18)

Features - 4.20.0

- Separate the list dependencies functionality to a separate abstract class allowing code reuse in plugins (such as
  ``tox-uv``) - by :gaborbernat`. (:issue:`3347`)
v4.19.0 (2024-09-17)
Features - 4.19.0

• Support pypy-<major>.<minor> environment names for PyPy environments - by :user:gaborbernat. (:issue:3346)

v4.18.1 (2024-09-07)

Bugfixes - 4.18.1

- Fix and test the string spec for the ``sys.executable`` interpreter (introduced in :pull:`3325`)
  - by :user:`hroncok` (:issue:`3327`)
Improved Documentation - 4.18.1

• Changes the tox_env_teardown docstring to explain the hook is called after a tox env was teared down. (:issue:3305)

v4.18.0 (2024-08-13)

Features - 4.18.0

- Suppress spinner in parallel runs in CI - by :user:`ziima`. (:issue:`3318`)
Bugfixes - 4.18.0

• Boost temporary directories cleanup in tests - by :user:ziima. (:issue:3278)
• Fix absolute base python paths conflicting - by :user:gaborbernat. (:issue:3325)

... (truncated)

Commits

• 46bef9e release 4.21.0
• cea105b True TOML config support (#3353)
• a04b039 [pre-commit.ci] pre-commit autoupdate (#3385)
• f5eba31 Update Loader docs (#3352)
• 329db63 [pre-commit.ci] pre-commit autoupdate (#3350)
• f4b3bd2 Bump pypa/gh-action-pypi-publish from 1.10.1 to 1.10.2 (#3349)
• a04cc3a release 4.20.0
• 4d8f5fd Separate list dependencies to a separate installer class (#3347)
• 0cb816c YML to YAML
• 2f83624 release 4.19.0
• Additional commits viewable in compare view

Updates numpy from 1.26.4 to 2.1.1

Release notes

Sourced from numpy's releases.

2.1.1 (Sep 3, 2024)

NumPy 2.1.1 Release Notes

NumPy 2.1.1 is a maintenance release that fixes bugs and regressions discovered after the 2.1.0 release.

The Python versions supported by this release are 3.10-3.13.

Contributors

A total of 7 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

• Andrew Nelson
• Charles Harris
• Mateusz Sokół
• Maximilian Weigand +
• Nathan Goldbaum
• Pieter Eendebak
• Sebastian Berg

Pull requests merged

A total of 10 pull requests were merged for this release.

• #27236: REL: Prepare for the NumPy 2.1.0 release [wheel build]
• #27252: MAINT: prepare 2.1.x for further development
• #27259: BUG: revert unintended change in the return value of set_printoptions
• #27266: BUG: fix reference counting bug in __array_interface__ implementation...
• #27267: TST: Add regression test for missing descr in array-interface
• #27276: BUG: Fix #27256 and #27257
• #27278: BUG: Fix array_equal for numeric and non-numeric scalar types
• #27287: MAINT: Update maintenance/2.1.x after the 2.0.2 release
• #27303: BLD: cp311- macosx_arm64 wheels [wheel build]
• #27304: BUG: f2py: better handle filtering of public/private subroutines

Checksums

MD5

3053a97400db800b7377749e691eb39e  numpy-2.1.1-cp310-cp310-macosx_10_9_x86_64.whl
84b752a2220dce7c96ff89eef4f4aec3  numpy-2.1.1-cp310-cp310-macosx_11_0_arm64.whl
47ed4f704a64261f07ca24ef2e674524  numpy-2.1.1-cp310-cp310-macosx_14_0_arm64.whl
b8a45caa870aee980c298053cf064d28  numpy-2.1.1-cp310-cp310-macosx_14_0_x86_64.whl
e097ad5eee572b791b4a25eedad6df4a  numpy-2.1.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
ae502c99315884cda7f0236a07c035c4  numpy-2.1.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl
841a859d975c55090c0b60b72aab93a3  numpy-2.1.1-cp310-cp310-musllinux_1_1_x86_64.whl
d51be2b17f5b87aac64ab80fdfafc85e  numpy-2.1.1-cp310-cp310-musllinux_1_2_aarch64.whl
1f8249bd725397c6233fe6a0e8ad18b1  numpy-2.1.1-cp310-cp310-win32.whl
d38d6f06589c1ec104a6a31ff6035781  numpy-2.1.1-cp310-cp310-win_amd64.whl

... (truncated)

Commits

• 48606ab Merge pull request #27328 from charris/prepare-2.1.1
• a7cb4c4 REL: Prepare for the NumPy 2.1.1 release [wheel build]
• 884c92b Merge pull request #27303 from charris/backport-27284
• ca7f5c1 Merge pull request #27304 from charris/backport-27049
• 2a49507 BUG: f2py: better handle filtering of public/private subroutines
• d4306dd TST: Add regression test for gh-26920
• db9668d BLD: cp311- macosx_arm64 wheels [wheel build]
• c6ff254 Merge pull request #27287 from charris/post-2.0.2-release-update
• 326bc17 MAINT: Update main after the 2.0.2 release
• 8164b7c Merge pull request #27278 from charris/backport-27275
• Additional commits viewable in compare view

Updates torch from 2.3.1 to 2.4.1

Release notes

Sourced from torch's releases.

PyTorch 2.4.1 Release, bug fix release

This release is meant to fix the following issues (regressions / silent correctness):

Breaking Changes:

• The pytorch/pytorch docker image now installs the PyTorch package through pip and has switch its conda installation from miniconda to miniforge (#134274)

Windows:

• Fix performance regression on Windows related to MKL static linking (#130619) (#130697)
• Fix error during loading on Windows: [WinError 126] The specified module could not be found. (#131662) (#130697)

MPS:

• Fix tensor.clamp produces wrong values (#130226)
• Fix Incorrect result from batch norm with sliced inputs (#133610)

ROCM:

• Fix for launching kernel invalid config error when calling embedding with large index (#130994)
• Added a check and a warning when attempting to use hipBLASLt on an unsupported architecture (#128753)
• Fix image corruption with Memory Efficient Attention when running HuggingFace Diffusers Stable Diffusion 3 pipeline (#133331)

Distributed:

• Fix FutureWarning when using torch.load internally (#130663)
• Fix FutureWarning when using torch.cuda.amp.autocast internally (#130660)

Torch.compile:

• Fix exception with torch compile when onnxruntime-training and deepspeed packages are installed. (#131194)
• Fix silent incorrectness with torch.library.custom_op with mutable inputs and torch.compile (#133452)
• Fix SIMD detection on Linux ARM (#129075)
• Do not use C++20 features in cpu_inducotr code (#130816)

Packaging:

• Fix for exposing statically linked libstdc++ CXX11 ABI symbols (#134494)
• Fix error while building pytorch from source due to not missing QNNPACK module (#131864)
• Make PyTorch buildable from source on PowerPC (#129736)
• Fix XPU extension building (#132847)

Other:

• Fix warning when using pickle on a nn.Module that contains tensor attributes (#130246)
• Fix NaNs return in MultiheadAttention when need_weights=False (#130014)
• Fix nested tensor MHA produces incorrect results (#130196)
• Fix error when using torch.utils.flop_counter.FlopCounterMode (#134467)

Tracked Regressions:

• The experimental remote caching feature for Inductor's autotuner (enabled via TORCHINDUCTOR_AUTOTUNE_REMOTE_CACHE) is known to still be broken in this release and actively worked on in main. Following Error is generated: redis.exceptions.DataError: Invalid input of type: 'dict'. Please use nightlies if you need this feature (reported and Fixed by PR: #134032)

Release tracker #132400 contains all relevant pull requests related to this release as well as links to related issues.

PyTorch 2.4: Python 3.12, AOTInductor freezing, libuv backend for TCPStore

PyTorch 2.4 Release Notes

... (truncated)

Commits

• ee1b680 [Doc] Fix rendering of the unicode characters (#134695)
• 79c8867 Fix docstring for torch.signal.windows.nuttall (#134704)
• 38b96d3 Do not use \<filesystem> on Linux (#134494) (#134604)
• b84e8c6 Move module_tracker to logging for confused hierarchy (#134467) (#134501)
• 6a79d4a [ROCm] Prevent accidental enablement of efficient attention. (#134531)
• e0ddbff [Release Only] Disable flaky failing tests in release. Pin optree. Pin sympy ...
• 314f033 Use ephemeral runners for windows nightly builds (#134463) (#134496)
• 9c1f78e [CD] Use ephemeral arm64 runners for nightly and docker builds (#134473) (#13...
• 3675fc5 Use ephemeral runners for linux nightly builds (#134367) (#134492)
• 920c023 docker: Use miniforge, install from pip (#134497)
• Additional commits viewable in compare view

Updates horde-engine to 2.15.4

Release notes

Sourced from horde-engine's releases.

v2.15.4

Version 2.15.4

What's Changed

• fix: ignore numba bytecode dumps; config for ignored messages by @​tazlin in Haidra-Org/hordelib#342
• fix: ignore numba bytecode dumps; config for ignored messages by @​tazlin in Haidra-Org/hordelib#344

Full Changelog: https://github.com/Haidra-Org/hordelib/compare/v2.15.3...v2.15.4

Commits

• 9f3d457 Merge pull request #344 from Haidra-Org/main
• 7a2e468 fix: ignore numba bytecode dumps; config for ignored messages
• 7bfb78b ci: update changelog
• See full diff in compare view

Updates horde-model-reference to 0.9.1

Release notes

Sourced from horde-model-reference's releases.

v0.9.1

Version 0.9.1

What's Changed

• fix: allow floats for model requirement values by @​Unit1208 in Haidra-Org/horde-model-reference#147
• build(deps-dev): bump the python-packages group across 1 directory with 6 updates by @​dependabot in Haidra-Org/horde-model-reference#146
• fix: allow floats for model requirement values by @​tazlin in Haidra-Org/horde-model-reference#148

New Contributors

• @​Unit1208 made their first contribution in Haidra-Org/horde-model-reference#147

Full Changelog: https://github.com/Haidra-Org/horde-model-reference/compare/v0.9.0...v0.9.1

Commits

• d1a64a9 Merge pull request #148 from Haidra-Org/main
• 825cf0e ci: remove pre-commit github action (replaced by https://pre-commit.ci/)
• a954f5d chore: update black pre-commit hook
• 64c5681 [pre-commit.ci] pre-commit autoupdate
• 2bac968 build(deps-dev): bump the python-packages group across 1 directory with 6 upd...
• a3e2377 fix: set new type hint for other requirements fields
• 8bd5607 fix: allow floats for model requirement values
• e6dfd02 ci: pre-commit.ci config
• See full diff in compare view

Updates qrcode from 7.4.2 to 8.0

Changelog

Sourced from qrcode's changelog.

8.0 ( 27 September 2024)

• Added support for Python 3.11 and 3.12.

• Drop support for Python <=3.8.

• Change local development setup to use Poetry_.

• Testsuite and code quality checks are done through Github Actions.

• Code quality and formatting utilises ruff_.

• Removed typing_extensions as a dependency, as it's no longer required with having Python 3.9+ as a requirement.

• Only allow high error correction rate (qrcode.ERROR_CORRECT_H) when generating QR codes with embedded images to ensure content is readable

.. _Poetry: https://python-poetry.org .. _ruff: https://astral.sh/ruff

Commits

• 456b01d Preparing release 8.0
• 909b791 Merge pull request #370 from lincolnloop/poetry
• dc783ed Update CHANGELOG and README
• 68f3b29 Raise error if embedded image is provided and error correction is lower than H
• ffa2b4a Merge branch 'poetry' into fix/embedded-and-error-correction
• 39cf502 Fix test dependency skip
• d991b67 Update poetry dependency groups to allow having pillow and png together
• 11b0f95 Merge branch 'poetry' into decompat
• 5760eec Run ruf and fix formatting
• 137946a Fix import errors in tests
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Superseded by #307.