Bump the pip group in /src with 20 updates

[dependabot]

Bumps the pip group in /src with 20 updates:

Package	From	To
coverage	7.6.2	7.6.9
pytest	8.3.3	8.3.4
pytest-cov	5.0.0	6.0.0
ruff	0.6.9	0.8.3
bokeh	3.6.0	3.6.2
certifi	2024.8.30	2024.12.14
cryptography	43.0.1	44.0.0
markupsafe	3.0.1	3.0.2
networkx	3.4	3.4.2
numpy	2.1.2	2.2.0
pillow	10.4.0	11.0.0
pycurl	7.45.3	7.45.4
pyopenssl	24.2.1	24.3.0
python-daemon	3.0.1	3.1.2
setuptools	75.1.0	75.6.0
six	1.16.0	1.17.0
wordcloud	1.9.3	1.9.4
ipython	8.28.2	8.30.0
scikit-learn	1.5.2	1.6.0
tornado	6.4.1	6.4.2

Updates coverage from 7.6.2 to 7.6.9

Changelog

Sourced from coverage's changelog.

Version 7.6.9 — 2024-12-06

• Fix: Tomas Uribe fixed <pull 1901_>_ a performance problem in the XML report. Large code bases should produce XML reports much faster now.

.. _pull 1901: nedbat/coveragepy#1901

.. _changes_7-6-8:

Version 7.6.8 — 2024-11-23

• Fix: the LCOV report code assumed that a branch line that took no branches meant that the entire line was unexecuted. This isn't true in a few cases: the line might always raise an exception, or might have been optimized away. Fixes issue 1896_.

• Fix: similarly, the HTML report will now explain that a line that jumps to none of its expected destinations must have always raised an exception. Previously, it would say something nonsensical like, "line 4 didn't jump to line 5 because line 4 was never true, and it didn't jump to line 7 because line 4 was always true." This was also shown in issue 1896_.

.. _issue 1896: nedbat/coveragepy#1896

.. _changes_7-6-7:

Version 7.6.7 — 2024-11-15

• Fix: ugh, the other assert from 7.6.5 can also be encountered in the wild, so it's been restored to a conditional. Sorry for the churn.

.. _changes_7-6-6:

Version 7.6.6 — 2024-11-15

• One of the new asserts from 7.6.5 caused problems in real projects, as reported in issue 1891_. The assert has been removed.

.. _issue 1891: nedbat/coveragepy#1891

.. _changes_7-6-5:

... (truncated)

Commits

• daac76d docs: sample HTML for 7.6.9
• f7d7e42 docs: prep for 7.6.9
• 8fe3b2b docs: thanks, Tomas Uribe for #1901
• 346cfc0 fix: use set instead of list for arcs_executed, fixes poor performance (#1901)
• 484678e fix: COVERAGE_ONE_CORE should mean ctrace if possible
• 37451ed chore: make upgrade doc_upgrade
• bd23445 chore: bump the action-dependencies group with 2 updates (#1899)
• 01cf50c test: add a test to satisfy a condition in results.py
• 74d3c50 chore: make upgrade
• f3b269c build: only comment once on an issue mentioned twice
• Additional commits viewable in compare view

Updates pytest from 8.3.3 to 8.3.4

Release notes

Sourced from pytest's releases.

8.3.4

pytest 8.3.4 (2024-12-01)

Bug fixes

• #12592: Fixed KeyError{.interpreted-text role="class"} crash when using --import-mode=importlib in a directory layout where a directory contains a child directory with the same name.

• #12818: Assertion rewriting now preserves the source ranges of the original instructions, making it play well with tools that deal with the AST, like executing.

• #12849: ANSI escape codes for colored output now handled correctly in pytest.fail{.interpreted-text role="func"} with [pytrace=False]{.title-ref}.

• #9353: pytest.approx{.interpreted-text role="func"} now uses strict equality when given booleans.

Improved documentation

• #10558: Fix ambiguous docstring of pytest.Config.getoption{.interpreted-text role="func"}.

• #10829: Improve documentation on the current handling of the --basetemp option and its lack of retention functionality (temporary directory location and retention{.interpreted-text role="ref"}).

• #12866: Improved cross-references concerning the recwarn{.interpreted-text role="fixture"} fixture.

• #12966: Clarify filterwarnings{.interpreted-text role="ref"} docs on filter precedence/order when using multiple @pytest.mark.filterwarnings <pytest.mark.filterwarnings ref>{.interpreted-text role="ref"} marks.

Contributor-facing changes

• #12497: Fixed two failing pdb-related tests on Python 3.13.

Commits

• 53f8b4e Update pypa/gh-action-pypi-publish to v1.12.2
• 98dff36 Prepare release version 8.3.4
• 1b474e2 approx: use exact comparison for bool (#13013)
• b541721 docs: Fix wrong statement about sys.modules with importlib import mode (#1298...
• 16cb87b pytest.fail: fix ANSI escape codes for colored output (#12959) (#12990)
• be6bc81 Issue #12966 Clarify filterwarnings docs on precedence when using multiple ma...
• 7aeb72b Improve docs on basetemp and retention (#12912) (#12928)
• c875841 Merge pull request #12917 from pytest-dev/patchback/backports/8.3.x/ded1f44e5...
• 6502816 Merge pull request #12913 from jakkdl/dontfailonbadpath
• 52135b0 Merge pull request #12885 from The-Compiler/pdb-py311 (#12887)
• Additional commits viewable in compare view

Updates pytest-cov from 5.0.0 to 6.0.0

Changelog

Sourced from pytest-cov's changelog.

6.0.0 (2024-10-29)

• Updated various documentation inaccuracies, especially on subprocess handling.
• Changed fail under checks to use the precision set in the coverage configuration. Now it will perform the check just like coverage report would.
• Added a --cov-precision cli option that can override the value set in your coverage configuration.
• Dropped support for now EOL Python 3.8.

Commits

• 9540437 Bump version: 5.0.0 → 6.0.0
• 9f81754 Further trim down envs and drop Python 3.8.
• b12b5ec Update conf.
• 23f4b27 Update changelog.
• 291a04f Bump test deps and trim config.
• 08f1101 Add --cov-precision option. Close #655.
• 76fe2a7 Move the warnings/errors in a place that doesn't import anything.
• a9ea7b7 Implement error/warning for the bad dynamic_context being set in config.
• c299e01 Add explicit suffixing to make it easier to see the identify the sources/usag...
• c87e546 Add reproducer for weird xdist dynamic_context interaction. Ref #604.
• Additional commits viewable in compare view

Updates ruff from 0.6.9 to 0.8.3

Release notes

Sourced from ruff's releases.

0.8.3

Release Notes

Preview features

• Fix fstring formatting removing overlong implicit concatenated string in expression part (#14811)
• [airflow] Add fix to remove deprecated keyword arguments (AIR302) (#14887)
• [airflow]: Extend rule to include deprecated names for Airflow 3.0 (AIR302) (#14765 and #14804)
• [flake8-bugbear] Improve error messages for except* (B025, B029, B030, B904) (#14815)
• [flake8-bugbear] itertools.batched() without explicit strict (B911) (#14408)
• [flake8-use-pathlib] Dotless suffix passed to Path.with_suffix() (PTH210) (#14779)
• [pylint] Include parentheses and multiple comparators in check for boolean-chained-comparison (PLR1716) (#14781)
• [ruff] Do not simplify round() calls (RUF046) (#14832)
• [ruff] Don't emit used-dummy-variable on function parameters (RUF052) (#14818)
• [ruff] Implement if-key-in-dict-del (RUF051) (#14553)
• [ruff] Mark autofix for RUF052 as always unsafe (#14824)
• [ruff] Teach autofix for used-dummy-variable about TypeVars etc. (RUF052) (#14819)

Rule changes

• [flake8-bugbear] Offer unsafe autofix for no-explicit-stacklevel (B028) (#14829)
• [flake8-pyi] Skip all type definitions in string-or-bytes-too-long (PYI053) (#14797)
• [pyupgrade] Do not report when a UTF-8 comment is followed by a non-UTF-8 one (UP009) (#14728)
• [pyupgrade] Mark fixes for convert-typed-dict-functional-to-class and convert-named-tuple-functional-to-class as unsafe if they will remove comments (UP013, UP014) (#14842)

Bug fixes

• Raise syntax error for mixing except and except* (#14895)
• [flake8-bugbear] Fix B028 to allow stacklevel to be explicitly assigned as a positional argument (#14868)
• [flake8-bugbear] Skip B028 if warnings.warn is called with *args or **kwargs (#14870)
• [flake8-comprehensions] Skip iterables with named expressions in unnecessary-map (C417) (#14827)
• [flake8-pyi] Also remove self and cls's annotation (PYI034) (#14801)
• [flake8-pytest-style] Fix pytest-parametrize-names-wrong-type (PT006) to edit both argnames and argvalues if both of them are single-element tuples/lists (#14699)
• [perflint] Improve autofix for PERF401 (#14369)
• [pylint] Fix PLW1508 false positive for default string created via a mult operation (#14841)

Contributors

• @​AlexWaygood
• @​BurntSushi
• @​DimitriPapadopoulos
• @​Glyphack
• @​InSyncWithFoo
• @​Lee-W
• @​MichaReiser
• @​UnknownPlatypus
• @​carljm
• @​cclauss
• @​dcreager
• @​dhruvmanila
• @​dylwil3

... (truncated)

Changelog

Sourced from ruff's changelog.

0.8.3

Preview features

• Fix fstring formatting removing overlong implicit concatenated string in expression part (#14811)
• [airflow] Add fix to remove deprecated keyword arguments (AIR302) (#14887)
• [airflow]: Extend rule to include deprecated names for Airflow 3.0 (AIR302) (#14765 and #14804)
• [flake8-bugbear] Improve error messages for except* (B025, B029, B030, B904) (#14815)
• [flake8-bugbear] itertools.batched() without explicit strict (B911) (#14408)
• [flake8-use-pathlib] Dotless suffix passed to Path.with_suffix() (PTH210) (#14779)
• [pylint] Include parentheses and multiple comparators in check for boolean-chained-comparison (PLR1716) (#14781)
• [ruff] Do not simplify round() calls (RUF046) (#14832)
• [ruff] Don't emit used-dummy-variable on function parameters (RUF052) (#14818)
• [ruff] Implement if-key-in-dict-del (RUF051) (#14553)
• [ruff] Mark autofix for RUF052 as always unsafe (#14824)
• [ruff] Teach autofix for used-dummy-variable about TypeVars etc. (RUF052) (#14819)

Rule changes

• [flake8-bugbear] Offer unsafe autofix for no-explicit-stacklevel (B028) (#14829)
• [flake8-pyi] Skip all type definitions in string-or-bytes-too-long (PYI053) (#14797)
• [pyupgrade] Do not report when a UTF-8 comment is followed by a non-UTF-8 one (UP009) (#14728)
• [pyupgrade] Mark fixes for convert-typed-dict-functional-to-class and convert-named-tuple-functional-to-class as unsafe if they will remove comments (UP013, UP014) (#14842)

Bug fixes

• Raise syntax error for mixing except and except* (#14895)
• [flake8-bugbear] Fix B028 to allow stacklevel to be explicitly assigned as a positional argument (#14868)
• [flake8-bugbear] Skip B028 if warnings.warn is called with *args or **kwargs (#14870)
• [flake8-comprehensions] Skip iterables with named expressions in unnecessary-map (C417) (#14827)
• [flake8-pyi] Also remove self and cls's annotation (PYI034) (#14801)
• [flake8-pytest-style] Fix pytest-parametrize-names-wrong-type (PT006) to edit both argnames and argvalues if both of them are single-element tuples/lists (#14699)
• [perflint] Improve autofix for PERF401 (#14369)
• [pylint] Fix PLW1508 false positive for default string created via a mult operation (#14841)

0.8.2

Preview features

• [airflow] Avoid deprecated values (AIR302) (#14582)
• [airflow] Extend removed names for AIR302 (#14734)
• [ruff] Extend unnecessary-regular-expression to non-literal strings (RUF055) (#14679)
• [ruff] Implement used-dummy-variable (RUF052) (#14611)
• [ruff] Implement unnecessary-cast-to-int (RUF046) (#14697)

Rule changes

• [airflow] Check AIR001 from builtin or providers operators module (#14631)
• [flake8-pytest-style] Remove @ in pytest.mark.parametrize rule messages (#14770)
• [pandas-vet] Skip rules if the panda module hasn't been seen (#14671)

... (truncated)

Commits

• 53f2d72 Revert certain double quotes from workflow shell script (#14939)
• 3629cbf Use double quotes consistently for shell scripts (#14938)
• 37f4338 Bump version to 0.8.3 (#14937)
• 45b565c [red-knot] Any cannot be parameterized (#14933)
• 82faa9b Add tests demonstrating f-strings with debug expressions in replacements that...
• 2eac00c [perflint] fix invalid hoist in perf401 (#14369)
• 033ecf5 Also have zizmor check for low-severity security issues (#14893)
• 5509a3d Add LSP settings example for Zed editor (#14894)
• e4885a2 [red-knot] Understand typing.Tuple (#14927)
• a7e5e42 [red-knot] Make attributes.md test future-proof (#14923)
• Additional commits viewable in compare view

Updates bokeh from 3.6.0 to 3.6.2

Changelog

Sourced from bokeh's changelog.

2024-12-03 3.6.2:

• bugfixes:

  • #14082 [BUG] p.circle(..) can't be added as renderer to PointDrawTool since 3.6
  • #14153 [component: bokehjs] ScaleBar positioning doesn't work correctly
  • #14160 [component: docs] Search box on start page has no surrounding line
  • #14168 [component: bokehjs] [BUG] using add_tile to add multiple layers causes error on JScript side

• tasks:

  • #14088 [component: docs] [BUG] Missing radius parameter in code example
  • #14086 Update links to sponsor page
  • #14155 Backports for 3.6.2

2024-11-06 3.6.1:

• bugfixes:

  • #14082 [BUG] p.circle(..) can't be added as renderer to PointDrawTool since 3.6
  • #14090 [component: bokehjs] [BUG] Google Chrome 130 fails to draw figure, throws TypeError: Failed to execute 'fill' on 'CanvasRenderingContext2D'
  • #14107 [component: bokehjs] [BUG] Loss of mobile touch scrolling with update to Bokeh 3.6.0

• tasks:

  • #14096 Backports for 3.6.1

2024-09-26 3.6:

• bugfixes:

  • #4951 ModelExtensions - all resources from a whole module are loaded
  • #7524 GroupFilter only accepts strings
  • #13827 [component: bokehjs] [BUG] Lack of range expansion when there remains unbounded directions, even when maintain_focus=False
  • #13886 [component: bokehjs] [BUG] NPM package has types (*.d.ts) in incorrect location
  • #13957 [component: bokehjs] Explicit selection glyph example broken
  • #13959 [BUG] Reset Tool Error in Bokeh Gridplot with Single Plot
  • #13964 [component: bokehjs] [BUG] page won't render if CustomJS args has a dict with key "constructor"
  • #13965 [component: bokehjs] [BUG] CategoricalSlider shows ‘undefined’ value and skip that value
  • #13972 BOKEH_MINIFIED not working
  • #13984 [component: tests] [BUG] Deprecation warning treated as error in pytest hook
  • #14014 [component: bokehjs] [BUG] StringFormatter nan_format seems broken
  • #14054 [component: bokehjs] [BUG] Custom hover tooltip on image plot shows all the image data.
  • #14058 [component: bokehjs] [BUG] Clearing selection with ESC only works on first selection tool
  • #14068 [component: bokehjs] [BUG] Unable to change figures displayed by altering children attribute of gridplot (or other layout classes) in JS callback
  • #14072 [component: bokehjs] [BUG] Spinner input not responding to wheel event
  • #13968 [component: docs] fix indentation in offset parameter for Title
  • #14038 [component: bokehjs] Allow is_equal(0, -0) to be true to match ===
  • #14055 [component: docs] fix some typos
  • #14065 [component: build] Generate correct *.d.ts files for CSS modules

• features:

  • #601 [component: bokehjs] Add support for click events on categorical axes
  • #11104 [component: bokehjs] [FEATURE] Option for DataTable column sorting to place NaNs last
  • #13130 [component: bokehjs] Add CustomJSTicker

... (truncated)

Commits

• 34cd492 Deployment updates for release 3.6.2
• fda0e1d Merge pull request #14155 from bokeh/mattpap/3.6.2_backports
• 07d67a5 Add release notes
• a1e8979 Update switcher.json
• 4eb1e1d Update links to sponsor page (#14086)
• 6a31a39 Added radius parameter to circle plot. (#14089)
• fdd7724 RadialGlyph should inherit from XYGlyph (#14085)
• 9e86d31 fix missing line on search box (#14161)
• 8c086ea Don't fail on partially updated Pane's view storage (#14170)
• b59f1c3 Fix a regression in ScaleBar positioning (#14154)
• Additional commits viewable in compare view

Updates certifi from 2024.8.30 to 2024.12.14

Commits

• 4ba3900 2024.12.14 (#329)
• 9164660 Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#331)
• 3dc3651 Bump pypa/gh-action-pypi-publish from 1.11.0 to 1.12.2 (#328)
• c5bf18d Bump pypa/gh-action-pypi-publish from 1.10.3 to 1.11.0 (#327)
• b908391 Bump actions/setup-python from 5.2.0 to 5.3.0 (#326)
• bc26b41 Bump actions/checkout from 4.2.1 to 4.2.2 (#325)
• 57afc22 Bump actions/upload-artifact from 4.4.1 to 4.4.3 (#323)
• a495091 test against 3.13 final
• 62f8144 Added 3.13 classifier (#322)
• 94d23a0 Bump pypa/gh-action-pypi-publish from 1.10.2 to 1.10.3 (#321)
• Additional commits viewable in compare view

Updates cryptography from 43.0.1 to 44.0.0

Changelog

Sourced from cryptography's changelog.

44.0.0 - 2024-11-27

* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.9.
* Deprecated Python 3.7 support. Python 3.7 is no longer supported by the
  Python core team. Support for Python 3.7 will be removed in a future
  ``cryptography`` release.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.4.0.
* macOS wheels are now built against the macOS 10.13 SDK. Users on older
  versions of macOS should upgrade, or they will need to build
  ``cryptography`` themselves.
* Enforce the :rfc:`5280` requirement that extended key usage extensions must
  not be empty.
* Added support for timestamp extraction to the
  :class:`~cryptography.fernet.MultiFernet` class.
* Relax the Authority Key Identifier requirements on root CA certificates
  during X.509 verification to allow fields permitted by :rfc:`5280` but
  forbidden by the CA/Browser BRs.
* Added support for :class:`~cryptography.hazmat.primitives.kdf.argon2.Argon2id`
  when using OpenSSL 3.2.0+.
* Added support for the :class:`~cryptography.x509.Admissions` certificate extension.
* Added basic support for PKCS7 decryption (including S/MIME 3.2) via
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_der`,
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_pem`, and
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.pkcs7_decrypt_smime`.
.. _v43-0-3:
43.0.3 - 2024-10-18

• Fixed release metadata for cryptography-vectors

.. _v43-0-2:

43.0.2 - 2024-10-18

* Fixed compilation when using LibreSSL 4.0.0.
.. _v43-0-1:

Commits

• f299a48 remove deprecated call (#12052)
• 439eb05 Bump version for 44.0.0 (#12051)
• 2c5ad4d chore(deps): bump maturin from 1.7.4 to 1.7.5 in /.github/requirements (#12050)
• d23968a chore(deps): bump libc from 0.2.165 to 0.2.166 (#12049)
• 133c0e0 Bump x509-limbo and/or wycheproof in CI (#12047)
• f2259d7 Bump BoringSSL and/or OpenSSL in CI (#12046)
• e201c87 fixed metadata in changelog (#12044)
• c6104cc Prohibit Python 3.9.0, 3.9.1 -- they have a bug that causes errors (#12045)
• d6cac75 Add support for decrypting S/MIME messages (#11555)
• b8e5bfd chore(deps): bump libc from 0.2.164 to 0.2.165 (#12042)
• Additional commits viewable in compare view

Updates markupsafe from 3.0.1 to 3.0.2

Release notes

Sourced from markupsafe's releases.

3.0.2

This is the MarkupSafe 3.0.2 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/MarkupSafe/3.0.2/ Changes: https://markupsafe.palletsprojects.com/en/stable/changes/#version-3-0-2 Milestone: https://github.com/pallets/markupsafe/milestone/14?closed=1

• Fix compatibility when __str__ returns a str subclass. #472
• Build requires setuptools >= 70.1. #475

Changelog

Sourced from markupsafe's changelog.

Version 3.0.2

Released 2024-10-18

• Fix compatibility when __str__ returns a str subclass. :issue:472
• Build requires setuptools >= 70.1. :issue:475

Commits

• 28ace20 release version 3.0.2
• 6b51fd8 build requires at least setuptools 70.1 (#478)
• 99dda9f build requires at least setuptools 70.1
• 3d8fd8c fix version
• 1933c4b fix version
• e85aff4 relax speedups str check (#477)
• 8cb1691 relax speedups str check
• 4dafb7c start version 3.1.0
• 9c44ecf update docs build
• 275c769 Merge branch '2.1.x' into 3.0.x
• Additional commits viewable in compare view

Updates networkx from 3.4 to 3.4.2

Release notes

Sourced from networkx's releases.

NetworkX 3.4.2

We're happy to announce the release of networkx 3.4.2!

Bug Fixes

• Fix docstrings of dispatchable functions (#7679).
• Fix draw_networkx_nodes return type (#7685).

Documentation

• Add disclaimer about LLM driven PRs (#7683).

Maintenance

• Fix doc warnings from recently added docs (#7682).

Contributors

6 authors added to this release (alphabetically):

• Dan Schult (@​dschult)
• Erik Welch (@​eriknw)
• Jarrod Millman (@​jarrodmillman)
• Kirk Bonney (@​kbonney)
• Mridul Seth (@​MridulS)
• Ross Barnowski (@​rossbar)

4 reviewers added to this release (alphabetically):

• Aditi Juneja (@​Schefflera-Arboricola)
• Dan Schult (@​dschult)
• Jarrod Millman (@​jarrodmillman)
• Matt Schwennesen (@​mjschwenne)

These lists are automatically generated, and may not be complete or may contain duplicates.

NetworkX 3.4.1

networkx 3.4.1

We're happy to announce the release of networkx 3.4.1!

Maintenance

• Remove old deprecation decorator (#7669).
• MAINT: delay loading of backend_info to after imports (#7672).

Contributors

2 authors added to this release (alphabetically):

... (truncated)

Commits

• 2acf159 Designate 3.4.2 release
• 36863b0 Add disclaimer about LLM driven PRs (#7683)
• fb17e15 Fix draw_networkx_nodes return type (#7685)
• 173f6c3 Fix doc warnings from recently added docs (#7682)
• 2f45b4d Fix docstrings of dispatchable functions (#7679)
• c107d25 Bump release version
• ab4d375 Designate 3.4.1 release
• bcffd70 Update release process
• 16fdb10 MAINT: delay loading of backend_info to after imports (#7672)
• 3bf29e1 Bump release version
• Additional commits viewable in compare view

Updates numpy from 2.1.2 to 2.2.0

Release notes

Sourced from numpy's releases.

2.2.0 (Dec 8, 2024)

NumPy 2.2.0 Release Notes

The NumPy 2.2.0 release is quick release that brings us back into sync with the usual twice yearly release cycle. There have been an number of small cleanups, as well as work bringing the new StringDType to completion and improving support for free threaded Python. Highlights are:

• New functions matvec and vecmat, see below.
• Many improved annotations.
• Improved support for the new StringDType.
• Improved support for free threaded Python
• Fixes for f2py

This release supports Python versions 3.10-3.13.

Deprecations

• _add_newdoc_ufunc is now deprecated. ufunc.__doc__ = newdoc should be used instead.

  (gh-27735)

Expired deprecations

• bool(np.array([])) and other empty arrays will now raise an error. Use arr.size > 0 instead to check whether an array has no elements.

  (gh-27160)

Compatibility notes

• numpy.cov now properly transposes single-row (2d array) design matrices when rowvar=False. Previously, single-row design matrices would return a scalar in this scenario, which is not correct, so this is a behavior change and an array of the appropriate shape will now be returned.

  (gh-27661)

New Features

• New functions for matrix-vector and vector-matrix products

  Two new generalized ufuncs were defined:

  • numpy.matvec - matrix-vector product, treating the arguments as stacks of matrices and column vectors,

... (truncated)

Commits

• e7a123b Merge pull request #27928 from charris/prepare-2.2.0
• d97d071 MAINT: Try fixing MacOS cirrus build failures. [wheel build]
• 1ed7b67 REL: Prepare for the NumPy 2.2.0 release [wheel build]
• fd9e7ef Merge pull request #27916 from charris/backport-27915
• 2e0941f MAINT: Bump actions/cache from 4.1.2 to 4.2.0
• 013656d Merge pull request #27912 from charris/backport-27877
• 7895ba6 Merge pull request #27913 from charris/backport-27896
• ee8d1cd PERF: improve multithreaded ufunc scaling (#27896)
• 77fff6b ENH: Refactor __qualname__ across API (#27877)
• b30a338 Merge pull request #27911 from charris/backport-27891
• Additional commits viewable in compare view

Updates pillow from 10.4.0 to 11.0.0

Release notes

Sourced from pillow's releases.

11.0.0

https://pillow.readthedocs.io/en/stable/releasenotes/11.0.0.html

Removals

• Drop support for EOL PyPy3.9 #8335 [@​hugovk]
• Remove all WITH_* flags from _imaging.c and other flags #8211 [@​homm]
• Remove unused _util.is_directory #8259 [@​hugovk]
• Drop support for Python 3.8 #8183 [@​hugovk]
• Remove PSFile, PyAccess and USE_CFFI_ACCESS #8182 [@​hugovk]

Deprecations

• Deprecate ICNS (width, height, scale) sizes in favour of load(scale) #8352 [@​radarhere]
• Deprecate isImageType #8364 [@​radarhere]
• Deprecate support for FreeType 2.9.0 #8356 [@​hugovk]
• Remove WebP support without anim, mux/demux, and with buggy alpha #8213 [@​homm]
• Deprecate JpegImageFile huffman_ac and huffman_dc #8274 [@​radarhere]
• Deprecate ImageMath lambda_eval and unsafe_eval options argument #8242 [@​radarhere]

Changes

• Do not create core image in TIFF seek() #8392 [@​radarhere]
• Removed custom build_openjpeg #8365 [@​radarhere]
• Support writing LONG8 offsets in AppendingTiffWriter #8417 [@​radarhere]
• Use ImageFile.MAXBLOCK when saving TIFF images #8461 [@​radarhere]
• Always raise warnings for deprecated feature checks #8459 [@​radarhere]
• Do not close provided file handles with libtiff when saving #8458 [@​radarhere]
• Revert "Skip QEMU-emulated wheels on workflow dispatch event" #8455 [@​radarhere]
• Support ImageFilter.BuiltinFilter for I;16* images #8438 [@​radarhere]
• [pre-commit.ci] pre-commit autoupdate #8448 [@​pre-commit-ci]
• Use ImagingCore.ptr instead of ImagingCore.id #8341 [@​homm]
• Simplified code #8445 [@​radarhere]
• Removed unused code #8447 [@​radarhere]
• Updated EPS mode when opening images without transparency #8281 [@​Yay295]
• Use transparency when combining P frames from APNGs #8443 [@​radarhere]
• Generate and upload attestations to PyPI #8441 [@​hugovk]
• Do not convert images unnecessarily in ImageEnhance #8431 [@​radarhere]
• Raise an error if path is compacted during mapping #8416 [@​radarhere]
• Support all resampling filters when resizing I;16* images #8422 [@​radarhere]
• Free memory on early return #8413 [@​radarhere]
• Cast int before potentially exceeding INT_MAX #8402 [Description has been truncated

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.