Bump the production-dependencies group across 1 directory with 3 updates

[dependabot[bot]]

Bumps the production-dependencies group with 3 updates in the / directory: pyarrow, numpy and pydantic-settings.

Updates pyarrow from 15.0.2 to 17.0.0

Release notes

Sourced from pyarrow's releases.

Apache Arrow 17.0.0

Release Notes URL: https://arrow.apache.org/release/17.0.0.html

Apache Arrow 17.0.0 RC2

Release Notes: Release Candidate: 17.0.0 RC2

Apache Arrow 17.0.0 RC1

Release Notes: Release Candidate: 17.0.0 RC1

Apache Arrow 17.0.0 RC0

Release Notes: Release Candidate: 17.0.0 RC0

Commits

• 6a2e19a MINOR: [Release] Update versions for 17.0.0
• 1a2fff4 MINOR: [Release] Update .deb/.rpm changelogs for 17.0.0
• 9d4cccc MINOR: [Release] Update CHANGELOG.md for 17.0.0
• bf75923 GH-43204: [CI][Packaging] Apply vcpkg patch to fix Thrift version (#43208)
• e85767a GH-41541: [Go][Parquet] More fixes for writer performance regression (#42003)
• 5c69895 GH-43199: [CI][Packaging] dev/release/utils-create-release-tarball.sh should ...
• 12be569 GH-42149: [C++] Use FetchContent for bundled ORC (#43011)
• 58d5142 GH-43158: [Packaging] Use bundled nlohmann/json on AlmaLinux 8/CentOS Stream ...
• 56a9862 GH-41910: [Python] Add support for Pyodide (#37822)
• 14e4684 GH-43116: [C++][Compute] Mark KeyCompare.CompareColumnsToRowsLarge as large m...
• Additional commits viewable in compare view

Updates numpy from 1.26.4 to 2.0.1

Release notes

Sourced from numpy's releases.

v2.0.1

NumPy 2.0.1 Release Notes

NumPy 2.0.1 is a maintenance release that fixes bugs and regressions discovered after the 2.0.0 release. NumPy 2.0.1 is the last planned release in the 2.0.x series, 2.1.0rc1 should be out shortly.

The Python versions supported by this release are 3.9-3.12.

NOTE: Do not use the GitHub generated "Source code" files listed in the "Assets", they are garbage.

Improvements

np.quantile with method closest_observation chooses nearest even order statistic

This changes the definition of nearest for border cases from the nearest odd order statistic to nearest even order statistic. The numpy implementation now matches other reference implementations.

(gh-26656)

Contributors

A total of 15 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

• @​vahidmech +
• Alex Herbert +
• Charles Harris
• Giovanni Del Monte +
• Leo Singer
• Lysandros Nikolaou
• Matti Picus
• Nathan Goldbaum
• Patrick J. Roddy +
• Raghuveer Devulapalli
• Ralf Gommers
• Rostan Tabet +
• Sebastian Berg
• Tyler Reddy
• Yannik Wicke +

Pull requests merged

A total of 24 pull requests were merged for this release.

• #26711: MAINT: prepare 2.0.x for further development
• #26792: TYP: fix incorrect import in ma/extras.pyi stub
• #26793: DOC: Mention '1.25' legacy printing mode in set_printoptions
• #26794: DOC: Remove mention of NaN and NAN aliases from constants

... (truncated)

Commits

• 4c9f431 Merge pull request #27000 from charris/prepare-2.0.1
• 0e70e00 REL: Prepare for the NumPy 2.0.1 release [wheel build]
• 4d10ffc Merge pull request #26995 from charris/backport-26985
• 764b667 BUG: Add object cast to avoid warning with limited API
• 9be6ad6 Merge pull request #26971 from charris/backport-26935
• 6d950e9 BUG: fix f2py tests to work with v2 API
• 89630c0 Merge pull request #26962 from charris/backport-26919
• 88fa840 TST: Apply test suggestion by Nathan for rlstrip fixes
• a9da01e BUG,MAINT: Fix utf-8 character stripping memory access
• 6afbbf8 Merge pull request #26963 from charris/backport-26930
• Additional commits viewable in compare view

Updates pydantic-settings from 2.3.4 to 2.4.0

Release notes

Sourced from pydantic-settings's releases.

v2.4.0

What's Changed

• Fix regex flags accidentally passed as count by @​musicinmybrain in pydantic/pydantic-settings#328
• Deprecate read_env_file and move it to DotEnvSettingsSource by @​WarpedPixel in pydantic/pydantic-settings#318
• Fix a bug when loading empty yaml file by @​hramezani in pydantic/pydantic-settings#330
• feat: Enable access to the current state in settings sources by @​VictorColomb in pydantic/pydantic-settings#326
• Add support for short options. by @​kschwab in pydantic/pydantic-settings#339
• Add Azure Key Vault settings source by @​AndreuCodina in pydantic/pydantic-settings#272
• Add cli_exit_on_error config option by @​kschwab in pydantic/pydantic-settings#340

New Contributors

• @​musicinmybrain made their first contribution in pydantic/pydantic-settings#328
• @​WarpedPixel made their first contribution in pydantic/pydantic-settings#318
• @​VictorColomb made their first contribution in pydantic/pydantic-settings#326
• @​AndreuCodina made their first contribution in pydantic/pydantic-settings#272

Full Changelog: https://github.com/pydantic/pydantic-settings/compare/v2.3.4...v2.4.0

Commits

• 5cc686a Prepare release 2.4.0 (#355)
• 4840d69 Add cli_exit_on_error config option (#340)
• bcbdd2a Add Azure Key Vault settings source (#272)
• 6ffd6bd Add support for short options. (#339)
• 8b8803d feat: Enable access to the current state in settings sources (#326)
• 229319c Fix a bug when loading empty yaml file (#330)
• d6db0f9 Deprecate read_env_file and move it to DotEnvSettingsSource (#318)
• fa17c0a Fix regex flags accidentally passed as count (#328)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.