build(deps): bump the pip group across 6 directories with 7 updates

[dependabot[bot]]

Bumps the pip group with 1 update in the /LLM/llama_index/samples/llama-index-milvus-example directory: aiohttp. Bumps the pip group with 2 updates in the /ml-serving/custom-serving/fastapi/ray/ray_distilbert directory: aiohttp and psutil. Bumps the pip group with 2 updates in the /ml-serving/custom-serving/fastapi/ray/ray_stablediffusion directory: aiohttp and psutil. Bumps the pip group with 2 updates in the /ml-serving/custom-serving/fastapi/ray/ray_yolov5s directory: aiohttp and psutil. Bumps the pip group with 6 updates in the /spark/spark_nlp directory:

Package	From	To
pyyaml	3.13	5.4
bleach	3.1.5	3.3.0
django	3.0.8	3.1.14
httplib2	0.17.4	0.19.0
psutil	5.4.8	5.6.6
rsa	4.6	4.7

Updates aiohttp from 3.9.2 to 3.9.3

Release notes

Sourced from aiohttp's releases.

3.9.3

Bug fixes

• Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: #8097, #8098.

Miscellaneous internal changes

• Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

  Related issues and pull requests on GitHub: #3957.

---

Changelog

Sourced from aiohttp's changelog.

3.9.3 (2024-01-29)

Bug fixes

• Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: :issue:8097, :issue:8098.

Miscellaneous internal changes

• Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

  Related issues and pull requests on GitHub: :issue:3957.

---

Commits

• bf4edce Release v3.9.3 (#8102)
• 5637e8f [PR #8098/aca206fc backport][3.9] Fix backwards compatibility with ssl (#8101)
• 33f49e8 Bump pypa/cibuildwheel from 2.16.2 to 2.16.4 (#8092)
• 5ff4b3c Update version
• 94462ee [PR #3957/79fe2045 backport][3.9] Improve test suite handling of paths, temp ...
• See full diff in compare view

Updates aiohttp from 3.9.2 to 3.9.3

Release notes

Sourced from aiohttp's releases.

3.9.3

Bug fixes

• Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: #8097, #8098.

Miscellaneous internal changes

• Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

  Related issues and pull requests on GitHub: #3957.

---

Changelog

Sourced from aiohttp's changelog.

3.9.3 (2024-01-29)

Bug fixes

• Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: :issue:8097, :issue:8098.

Miscellaneous internal changes

• Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

  Related issues and pull requests on GitHub: :issue:3957.

---

Commits

• bf4edce Release v3.9.3 (#8102)
• 5637e8f [PR #8098/aca206fc backport][3.9] Fix backwards compatibility with ssl (#8101)
• 33f49e8 Bump pypa/cibuildwheel from 2.16.2 to 2.16.4 (#8092)
• 5ff4b3c Update version
• 94462ee [PR #3957/79fe2045 backport][3.9] Improve test suite handling of paths, temp ...
• See full diff in compare view

Updates psutil from 5.9.7 to 5.9.8

Changelog

Sourced from psutil's changelog.

5.9.8

2024-01-19

Enhancements

• 2343_, [FreeBSD]: filter net_connections()_ returned list in C instead of Python, and avoid to retrieve unnecessary connection types unless explicitly asked. E.g., on an IDLE system with few IPv6 connections this will run around 4 times faster. Before all connection types (TCP, UDP, UNIX) were retrieved internally, even if only a portion was returned.
• 2342_, [NetBSD]: same as above (#2343) but for NetBSD.
• 2349_: adopted black formatting style.

Bug fixes

• 930_, [NetBSD], [critical]: net_connections()_ implementation was broken. It could either leak memory or core dump.
• 2340_, [NetBSD]: if process is terminated, Process.cwd()_ will return an empty string instead of raising NoSuchProcess_.
• 2345_, [Linux]: fix compilation on older compiler missing DUPLEX_UNKNOWN.
• 2222_, [macOS]: cpu_freq() now returns fixed values for min and max frequencies in all Apple Silicon chips.

Commits

• 27a1432 pre-release
• 2d880c8 fix failing tests
• 86f171a refac t
• d4ae6a0 refact some tests
• 20ba266 more tests refactoring
• 2e2668d Merge branch 'master' of github.com:giampaolo/psutil
• 82a4375 improve tests reliability
• 14a33ff Fix cpu_freq for Apple silicon (#2222)
• 89eac06 refactor tests + make them more robust
• c458816 Adopt black formatting style (#2349)
• Additional commits viewable in compare view

Updates aiohttp from 3.9.2 to 3.9.3

Release notes

Sourced from aiohttp's releases.

3.9.3

Bug fixes

• Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: #8097, #8098.

Miscellaneous internal changes

• Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

  Related issues and pull requests on GitHub: #3957.

---

Changelog

Sourced from aiohttp's changelog.

3.9.3 (2024-01-29)

Bug fixes

• Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: :issue:8097, :issue:8098.

Miscellaneous internal changes

• Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

  Related issues and pull requests on GitHub: :issue:3957.

---

Commits

• bf4edce Release v3.9.3 (#8102)
• 5637e8f [PR #8098/aca206fc backport][3.9] Fix backwards compatibility with ssl (#8101)
• 33f49e8 Bump pypa/cibuildwheel from 2.16.2 to 2.16.4 (#8092)
• 5ff4b3c Update version
• 94462ee [PR #3957/79fe2045 backport][3.9] Improve test suite handling of paths, temp ...
• See full diff in compare view

Updates psutil from 5.9.7 to 5.9.8

Changelog

Sourced from psutil's changelog.

5.9.8

2024-01-19

Enhancements

• 2343_, [FreeBSD]: filter net_connections()_ returned list in C instead of Python, and avoid to retrieve unnecessary connection types unless explicitly asked. E.g., on an IDLE system with few IPv6 connections this will run around 4 times faster. Before all connection types (TCP, UDP, UNIX) were retrieved internally, even if only a portion was returned.
• 2342_, [NetBSD]: same as above (#2343) but for NetBSD.
• 2349_: adopted black formatting style.

Bug fixes

• 930_, [NetBSD], [critical]: net_connections()_ implementation was broken. It could either leak memory or core dump.
• 2340_, [NetBSD]: if process is terminated, Process.cwd()_ will return an empty string instead of raising NoSuchProcess_.
• 2345_, [Linux]: fix compilation on older compiler missing DUPLEX_UNKNOWN.
• 2222_, [macOS]: cpu_freq() now returns fixed values for min and max frequencies in all Apple Silicon chips.

Commits

• 27a1432 pre-release
• 2d880c8 fix failing tests
• 86f171a refac t
• d4ae6a0 refact some tests
• 20ba266 more tests refactoring
• 2e2668d Merge branch 'master' of github.com:giampaolo/psutil
• 82a4375 improve tests reliability
• 14a33ff Fix cpu_freq for Apple silicon (#2222)
• 89eac06 refactor tests + make them more robust
• c458816 Adopt black formatting style (#2349)
• Additional commits viewable in compare view

Updates aiohttp from 3.9.2 to 3.9.3

Release notes

Sourced from aiohttp's releases.

3.9.3

Bug fixes

• Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: #8097, #8098.

Miscellaneous internal changes

• Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

  Related issues and pull requests on GitHub: #3957.

---

Changelog

Sourced from aiohttp's changelog.

3.9.3 (2024-01-29)

Bug fixes

• Fixed backwards compatibility breakage (in 3.9.2) of ssl parameter when set outside of ClientSession (e.g. directly in TCPConnector) -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: :issue:8097, :issue:8098.

Miscellaneous internal changes

• Improved test suite handling of paths and temp files to consistently use pathlib and pytest fixtures.

  Related issues and pull requests on GitHub: :issue:3957.

---

Commits

• bf4edce Release v3.9.3 (#8102)
• 5637e8f [PR #8098/aca206fc backport][3.9] Fix backwards compatibility with ssl (#8101)
• 33f49e8 Bump pypa/cibuildwheel from 2.16.2 to 2.16.4 (#8092)
• 5ff4b3c Update version
• 94462ee [PR #3957/79fe2045 backport][3.9] Improve test suite handling of paths, temp ...
• See full diff in compare view

Updates psutil from 5.9.7 to 5.9.8

Changelog

Sourced from psutil's changelog.

5.9.8

2024-01-19

Enhancements

• 2343_, [FreeBSD]: filter net_connections()_ returned list in C instead of Python, and avoid to retrieve unnecessary connection types unless explicitly asked. E.g., on an IDLE system with few IPv6 connections this will run around 4 times faster. Before all connection types (TCP, UDP, UNIX) were retrieved internally, even if only a portion was returned.
• 2342_, [NetBSD]: same as above (#2343) but for NetBSD.
• 2349_: adopted black formatting style.

Bug fixes

• 930_, [NetBSD], [critical]: net_connections()_ implementation was broken. It could either leak memory or core dump.
• 2340_, [NetBSD]: if process is terminated, Process.cwd()_ will return an empty string instead of raising NoSuchProcess_.
• 2345_, [Linux]: fix compilation on older compiler missing DUPLEX_UNKNOWN.
• 2222_, [macOS]: cpu_freq() now returns fixed values for min and max frequencies in all Apple Silicon chips.

Commits

• 27a1432 pre-release
• 2d880c8 fix failing tests
• 86f171a refac t
• d4ae6a0 refact some tests
• 20ba266 more tests refactoring
• 2e2668d Merge branch 'master' of github.com:giampaolo/psutil
• 82a4375 improve tests reliability
• 14a33ff Fix cpu_freq for Apple silicon (#2222)
• 89eac06 refactor tests + make them more robust
• c458816 Adopt black formatting style (#2349)
• Additional commits viewable in compare view

Updates pyyaml from 3.13 to 5.4

Changelog

Sourced from pyyaml's changelog.

5.4 (2021-01-19)

• yaml/pyyaml#407 -- Build modernization, remove distutils, fix metadata, build wheels, CI to GHA
• yaml/pyyaml#472 -- Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader
• yaml/pyyaml#441 -- Fix memory leak in implicit resolver setup
• yaml/pyyaml#392 -- Fix py2 copy support for timezone objects
• yaml/pyyaml#378 -- Fix compatibility with Jython

5.3.1 (2020-03-18)

• yaml/pyyaml#386 -- Prevents arbitrary code execution during python/object/new constructor

5.3 (2020-01-06)

• yaml/pyyaml#290 -- Use is instead of equality for comparing with None
• yaml/pyyaml#270 -- Fix typos and stylistic nit
• yaml/pyyaml#309 -- Fix up small typo
• yaml/pyyaml#161 -- Fix handling of slots
• yaml/pyyaml#358 -- Allow calling add_multi_constructor with None
• yaml/pyyaml#285 -- Add use of safe_load() function in README
• yaml/pyyaml#351 -- Fix reader for Unicode code points over 0xFFFF
• yaml/pyyaml#360 -- Enable certain unicode tests when maxunicode not > 0xffff
• yaml/pyyaml#359 -- Use full_load in yaml-highlight example
• yaml/pyyaml#244 -- Document that PyYAML is implemented with Cython
• yaml/pyyaml#329 -- Fix for Python 3.10
• yaml/pyyaml#310 -- Increase size of index, line, and column fields
• yaml/pyyaml#260 -- Remove some unused imports
• yaml/pyyaml#163 -- Create timezone-aware datetimes when parsed as such
• yaml/pyyaml#363 -- Add tests for timezone

5.2 (2019-12-02)

• Repair incompatibilities introduced with 5.1. The default Loader was changed, but several methods like add_constructor still used the old default yaml/pyyaml#279 -- A more flexible fix for custom tag constructors yaml/pyyaml#287 -- Change default loader for yaml.add_constructor yaml/pyyaml#305 -- Change default loader for add_implicit_resolver, add_path_resolver
• Make FullLoader safer by removing python/object/apply from the default FullLoader yaml/pyyaml#347 -- Move constructor for object/apply to UnsafeConstructor
• Fix bug introduced in 5.1 where quoting went wrong on systems with sys.maxunicode <= 0xffff yaml/pyyaml#276 -- Fix logic for quoting special characters
• Other PRs: yaml/pyyaml#280 -- Update CHANGES for 5.1

5.1.2 (2019-07-30)

• Re-release of 5.1 with regenerated Cython sources to build properly for Python 3.8b2+

... (truncated)

Commits

• 58d0cb7 5.4 release
• a60f7a1 Fix compatibility with Jython
• ee98abd Run CI on PR base branch changes
• ddf2033 constructor.timezone: _copy & deepcopy
• fc914d5 Avoid repeatedly appending to yaml_implicit_resolvers
• a001f27 Fix for CVE-2020-14343
• fe15062 Add 3.9 to appveyor file for completeness sake
• 1e1c7fb Add a newline character to end of pyproject.toml
• 0b6b7d6 Start sentences and phrases for capital letters
• c976915 Shell code improvements
• Additional commits viewable in compare view

Updates bleach from 3.1.5 to 3.3.0

Changelog

Sourced from bleach's changelog.

Version 3.3.0 (February 1st, 2021)

Backwards incompatible changes

• clean escapes HTML comments even when strip_comments=False

Security fixes

• Fix bug 1621692 / GHSA-m6xf-fq7q-8743. See the advisory for details.

Features

None

Bug fixes

None

Version 3.2.3 (January 26th, 2021)

Security fixes

None

Features

None

Bug fixes

• fix clean and linkify raising ValueErrors for certain inputs. Thank you @​Google-Autofuzz.

Version 3.2.2 (January 20th, 2021)

Security fixes

None

Features

• Migrate CI to Github Actions. Thank you @​hugovk.

Bug fixes

• fix linkify raising an IndexError on certain inputs. Thank you @​Google-Autofuzz.

... (truncated)

Commits

• 79b7a3c Merge pull request from GHSA-vv2x-vrpj-qqpq
• 842fcb4 Update for v3.3.0 release
• 1334134 sanitizer: escape HTML comments
• c045a8b Merge pull request #581 from mozilla/nit-fixes
• 491abb0 fix typo s/vnedoring/vendoring/
• 10b1c5d vendor: add html5lib-1.1.dist-info/REQUESTED
• cd838c3 Merge pull request #579 from mozilla/validate-convert-entity-code-points
• 612b808 Update for v3.2.3 release
• 6879f6a html5lib_shim: validate unicode points for convert_entity
• 90cb80b Update for v3.2.2 release
• Additional commits viewable in compare view

Updates django from 3.0.8 to 3.1.14

Commits

• 840bebf [3.1.x] Bumped version for 3.1.14 release.
• 22bd174 [3.1.x] Fixed #30530, CVE-2021-44420 -- Fixed potential bypass of an upstream...
• cfb780d [3.1.x] Added stub release notes 3.1.14 and 2.2.25.
• 61c2d58 [3.1.x] Added 'formatter' to spelling wordlist.
• 9dd1f95 [3.1.x] Fixed #33082 -- Fixed CommandTests.test_subparser_invalid_option on P...
• febc980 [3.1.x] Refs #31676 -- Updated technical board description in organization docs.
• 34a0bb5 [3.1.x] Refs #31676 -- Added Mergers and Releasers to organization docs.
• d94b1e4 [3.1.x] Refs #31676 -- Removed Core team from organization docs.
• cd391be [3.1.x] Fixed typo in docs/releases/3.1.13.txt.
• cb149dd [3.1.x] Refs #31676 -- Removed Django Core-Mentorship mailing list references...
• Additional commits viewable in compare view

Updates httplib2 from 0.17.4 to 0.19.0

Changelog

Sourced from httplib2's changelog.

0.19.0

auth: parse headers using pyparsing instead of regexp httplib2/httplib2#182

auth: WSSE token needs to be string not bytes httplib2/httplib2#179

0.18.1

explicit build-backend workaround for pip build isolation bug "AttributeError: 'module' object has no attribute 'legacy'" on pip install httplib2/httplib2#169

0.18.0

IMPORTANT security vulnerability CWE-93 CRLF injection Force %xx quote of space, CR, LF characters in uri. Special thanks to Recar https://github.com/Ciyfly for discrete notification. https://cwe.mitre.org/data/definitions/93.html

Commits

• 81e80d0 v0.19.0 release
• c3aed1e fix release script, interactive part
• bd9ee25 parse auth headers using pyparsing instead of regexp
• 33090ab initial fuzz testing integration with OSS-Fuzz
• 595e248 auth: WSSE token needs to be string not bytes
• 9bf300c v0.18.1 release
• cb2940a explicit build-backend workaround pip build isolation bug 6264
• 94f48ef check-manifest build tool
• 828c26d Security Policy
• 8373177 v0.18.0 release
• Additional commits viewable in compare view

Updates psutil from 5.4.8 to 5.6.6

Changelog

Sourced from psutil's changelog.

5.9.8

2024-01-19

Enhancements

• 2343_, [FreeBSD]: filter net_connections()_ returned list in C instead of Python, and avoid to retrieve unnecessary connection types unless explicitly asked. E.g., on an IDLE system with few IPv6 connections this will run around 4 times faster. Before all connection types (TCP, UDP, UNIX) were retrieved internally, even if only a portion was returned.
• 2342_, [NetBSD]: same as above (#2343) but for NetBSD.
• 2349_: adopted black formatting style.

Bug fixes

• 930_, [NetBSD], [critical]: net_connections()_ implementation was broken. It could either leak memory or core dump.
• 2340_, [NetBSD]: if process is terminated, Process.cwd()_ will return an empty string instead of raising NoSuchProcess_.
• 2345_, [Linux]: fix compilation on older compiler missing DUPLEX_UNKNOWN.
• 2222_, [macOS]: cpu_freq() now returns fixed values for min and max frequencies in all Apple Silicon chips.

Commits

• 27a1432 pre-release
• 2d880c8 fix failing tests
• 86f171a refac t
• d4ae6a0 refact some tests
• 20ba266 more tests refactoring
• 2e2668d Merge branch 'master' of github.com:giampaolo/psutil
• 82a4375 improve tests reliability
• 14a33ff Fix cpu_freq for Apple silicon (#2222)
• 89eac06 refactor tests + make them more robust
• c458816 Adopt black formatting style (#2349)
• Additional commits viewable in compare view

Updates rsa from 4.6 to 4.7

Changelog

Sourced from rsa's changelog.

Version 4.7 - released 2021-01-10

• Fix #165: CVE-2020-25658 - Bleichenbacher-style timing oracle in PKCS#1 v1.5 decryption code
• Add padding length check as described by PKCS#1 v1.5 (Fixes #164)
• Reuse of blinding factors to speed up blinding operations. Fixes #162.
• Declare & test support for Python 3.9

Commits

• fa3282a Bumped version to 4.7
• a364e82 Marked version 4.7 as released
• 539c54a Fix #170: mistake in examples of documentation
• b81e317 Declare support for and test Python 3.9
• 06ec1ea Fix #162: Blinding uses slow algorithm
• 341e5c4 Directly raise DecryptionError when crypto length is bad
• f254895 Use bytes.find() instead of bytes.index()
• 240b0d8 Add link to changelog
• f878c37 Fix #164: Add padding length check as described by PKCS#1 v1.5
• dae8ce0 Fix #165: CVE-2020-25658 - Bleichenbacher-style timing oracle
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/YeonwooSung/MLOps/network/alerts).

[dependabot[bot]]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.