remove the pyarrow dependency - this is not something we want to specify as a dependency. Instead what we should do is ignore the deprecation warning from pandas (which was confusingly written so made it sound like we should add pyarrow as a dependency)
remove upper pin for kedro and pandas. Our kedro test broke with the release of 0.19.2 due to https://github.com/kedro-org/kedro/pull/3451 and is fixed by adding kedro-datasets as a dependency
Also:
moved some dependencies pinned by Snyk to optional ones since they only come about from kedro. These should never have been in the core dependencies, and actually it highlights a fundamental flaw in the use of Snyk that we shouldn't be responsible for transitive dependency versions at all really - to be discussed more another time
Screenshot
Notice
[x] I acknowledge and agree that, by checking this box and clicking "Submit Pull Request":
I submit this contribution under the Apache 2.0 license and represent that I am entitled to do so on behalf of myself, my employer, or relevant third parties, as applicable.
I certify that (a) this contribution is my original creation and / or (b) to the extent it is not my original creation, I am authorized to submit this contribution on behalf of the original creator(s) or their licensees.
I certify that the use of this contribution as authorized by the Apache 2.0 license does not violate the intellectual property rights of anyone else.
I have not referenced individuals, products or companies in any commits, directly or indirectly.
I have not added data or restricted code in any commits, directly or indirectly.
Description
A proper fix following https://github.com/mckinsey/vizro/pull/274:
pyarrow
dependency - this is not something we want to specify as a dependency. Instead what we should do is ignore the deprecation warning from pandas (which was confusingly written so made it sound like we should addpyarrow
as a dependency)kedro
andpandas
. Our kedro test broke with the release of 0.19.2 due to https://github.com/kedro-org/kedro/pull/3451 and is fixed by addingkedro-datasets
as a dependencyAlso:
kedro
. These should never have been in the core dependencies, and actually it highlights a fundamental flaw in the use of Snyk that we shouldn't be responsible for transitive dependency versions at all really - to be discussed more another timeScreenshot
Notice
[x] I acknowledge and agree that, by checking this box and clicking "Submit Pull Request":