Closed dependabot[bot] closed 4 months ago
@xiangchenjhu, I think the dependency spec here is actually wrong. The requirements files are meant to represent the fixed set of known good versions to test with and for use in builds like docker or for production systems. So should be ==
. Any limits on versions should be represented in pyproject.toml
, and in this particular case dplutils limits the pandas version (see https://github.com/ssec-jhu/dplutils/blob/main/pyproject.toml#L13) due to something in ray.
I will create a fix PR for this: Please ref this: https://github.com/ssec-jhu/bluephos/pull/55
Updates the requirements on pandas to permit the latest version.
Release notes
Sourced from pandas's releases.
Commits
d9cdd2e
RLS: 2.2.298aeac9
Backport PR #58209: CI: Pin blosc to fix pytables (#58211)5466f15
Backport PR #58202: DOC/TST: Document numpy 2.0 support and add tests… (#58208)45b0b32
Backport PR #58203 on branch 2.2.x (DOC: Add release date/contributors for 2....c7ec566
Backport PR #58087 on branch 2.2.x (BLD: Build wheels using numpy 2.0rc1) (#5...691fc88
Backport PR #58181 on branch 2.2.x (CI: correct error msg in test_view_index)...a947587
Backport PR #58138 on branch 2.2.x (BLD: Fix nightlies not building) (#58140)b56842d
Backport PR #58100 on branch 2.2.x (MNT: fix compatibility with beautifulsoup...0f83d50
Revert "BLD: Pin numpy on 2.2.x" (#58093)e9b81ee
Backport PR #58126: BLD: Build wheels with numpy 2.0rc1 (#58127)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show