Bump the dependabot group across 1 directory with 3 updates

[dependabot]

Bumps the dependabot group with 3 updates in the / directory: pip, setuptools and tensorflow.

Updates pip from 24.2 to 24.3.1

Changelog

Sourced from pip's changelog.

24.3.1 (2024-10-27)

Bug Fixes

• Allow multiple nested inclusions of the same requirements file again. ([#13046](https://github.com/pypa/pip/issues/13046) <https://github.com/pypa/pip/issues/13046>_)

24.3 (2024-10-27)

Deprecations and Removals

• Deprecate wheel filenames that are not compliant with :pep:440. ([#12918](https://github.com/pypa/pip/issues/12918) <https://github.com/pypa/pip/issues/12918>_)

Features

• Detect recursively referencing requirements files and help users identify the source. ([#12653](https://github.com/pypa/pip/issues/12653) <https://github.com/pypa/pip/issues/12653>_)
• Support for :pep:730 iOS wheels. ([#12961](https://github.com/pypa/pip/issues/12961) <https://github.com/pypa/pip/issues/12961>_)

Bug Fixes

• Display a better error message when an already installed package has an invalid requirement. ([#12953](https://github.com/pypa/pip/issues/12953) <https://github.com/pypa/pip/issues/12953>_)
• Ignore PIP_TARGET and pip.conf global.target when preparing a build environment. ([#8438](https://github.com/pypa/pip/issues/8438) <https://github.com/pypa/pip/issues/8438>_)
• Restore support for macOS 10.12 and older (via truststore). ([#12901](https://github.com/pypa/pip/issues/12901) <https://github.com/pypa/pip/issues/12901>_)
• Allow installing pip in editable mode in a virtual environment on Windows. ([#12666](https://github.com/pypa/pip/issues/12666) <https://github.com/pypa/pip/issues/12666>_)

Vendored Libraries

• Upgrade certifi to 2024.8.30
• Upgrade distlib to 0.3.9
• Upgrade truststore to 0.10.0
• Upgrade urllib3 to 1.26.20

Commits

• 05293b6 Bump for release
• 6a5db8b Merge pull request #13047 from sbidoul/fix-13046
• 7be54ce Don't fail when the same req file is included more than once
• 4f6aeb1 Merge pull request #13044 from sbidoul/release/24.3
• e1b1d51 Bump for development
• cdba22f Bump for release
• 27f8374 Update AUTHORS.txt
• c79d019 Merge pull request #13033 from sbidoul/vendoring-24.3-sbi
• 3ca8921 Merge pull request #13041 from sethmlarson/truststore-0.10.0
• 0cc7375 Upgrade vendored truststore to 0.10.0
• Additional commits viewable in compare view

Updates setuptools from 75.1.0 to 75.2.0

Changelog

Sourced from setuptools's changelog.

v75.2.0

Features

• Made errors when parsing Distribution data more explicit about the expected type (tuple[str, ...] | list[str]) -- by :user:Avasam (#4578)

Bugfixes

• Fix a TypeError when a Distribution's old included attribute was a tuple -- by :user:Avasam (#4578)
• Add workaround for bdist_wheel --dist-info-dir errors when customisation does not inherit from setuptools. (#4684)

v75.1.1

Bugfixes

• Re-use pre-existing .dist-info dir when creating wheels via the build backend APIs (PEP 517) and the metadata_directory argument is passed -- by :user:pelson. (#1825)
• Changed egg_info command to avoid adding an empty .egg-info directory while iterating over entry-points. This avoids triggering integration problems with importlib.metadata/importlib_metadata (reference: pypa/pyproject-hooks#206). (#4680)

Commits

• 61a5a03 Bump version: 75.1.1 → 75.2.0
• 8ad3ea7 Workaround for bdist_wheel.dist_info_dir problems (#4684)
• 9af0877 Type sequence checks in setuptools/dist.py (#4578)
• 0534fde Add news fragment
• 50b732a Check for more specific error message
• a663287 Add pragma for edge-case code path
• 96be735 Workaround for bdist_wheel.dist_info_dir problems
• 000a413 Deprecate public access to setuptools.dist.sequence
• 00995c1 Use variable msg instead of tmpl in setuptools/dist
• d457d0e Type sequence checks in setuptools/dist.py
• Additional commits viewable in compare view

Updates tensorflow from 2.17.0 to 2.18.0

Release notes

Sourced from tensorflow's releases.

TensorFlow 2.18.0

Release 2.18.0

TensorFlow

Breaking Changes

• tf.lite

  • C API:
    • An optional, fourth parameter was added TfLiteOperatorCreate as a step forward towards a cleaner API for TfLiteOperator. Function TfLiteOperatorCreate was added recently, in TensorFlow Lite version 2.17.0, released on 7/11/2024, and we do not expect there will be much code using this function yet. Any code breakages can be easily resolved by passing nullptr as the new, 4th parameter.

• TensorRT support is disabled in CUDA builds for code health improvement.

• Hermetic CUDA support is added.

  Hermetic CUDA uses a specific downloadable version of CUDA instead of the user’s locally installed CUDA. Bazel will download CUDA, CUDNN and NCCL distributions, and then use CUDA libraries and tools as dependencies in various Bazel targets. This enables more reproducible builds for Google ML projects and supported CUDA versions.

Known Caveats

Major Features and Improvements

• TensorFlow now supports and is compiled with NumPy 2.0 by default. Please see the NumPy 2 release notes and the NumPy 2 migration guide.
  • Note that NumPy's type promotion rules have been changed(See NEP 50for details). This may change the precision at which computations happen, leading either to type errors or to numerical changes to results.
  • Tensorflow will continue to support NumPy 1.26 until 2025, aligning with community standard deprecation timeline here.
• tf.lite:
  • The LiteRT repo is live (see announcement), which means that in the coming months there will be changes to the development experience for TFLite. The TF Lite Runtime source will be moved later this year, and sometime after that we will start accepting contributions through that repo.
• SignatureRunner is now supported for models with no signatures.

Bug Fixes and Other Changes

• tf.data

  • Add optional synchronous argument to map, to specify that the map should run synchronously, as opposed to be parallelizable when options.experimental_optimization.map_parallelization=True. This saves memory compared to setting num_parallel_calls=1.
  • Add optional use_unbounded_threadpool argument to map, to specify that the map should use an unbounded threadpool instead of the default pool that is based on the number of cores on the machine. This can improve throughput for map functions which perform IO or otherwise release the CPU.
  • Add tf.data.experimental.get_model_proto to allow users to peek into the analytical model inside of a dataset iterator.

• tf.lite

  • Dequantize op supports TensorType_INT4.
    • This change includes per-channel dequantization.
  • Add support for stablehlo.composite.
  • EmbeddingLookup op supports per-channel quantization and TensorType_INT4 values.
  • FullyConnected op supports TensorType_INT16 activation and TensorType_Int4 weight per-channel quantization.

• tf.tensor_scatter_update, tf.tensor_scatter_add and of other reduce types.

  • Support bad_indices_policy.

Thanks to our Contributors

This release contains contributions from many people at Google, as well as:

Akhil Goel, akhilgoe, Alexander Pivovarov, Amir Samani, Andrew Goodbody, Andrey Portnoy, Anthony Platanios, bernardoArcari, Brett Taylor, buptzyb, Chao, Christian Clauss, Cocoa, Daniil Kutz, Darya Parygina, dependabot[bot], Dimitris Vardoulakis, Dragan Mladjenovic, Elfie Guo, eukub, Faijul Amin, flyingcat, Frédéric Bastien, ganyu.08, Georg Stefan Schmid, Grigory Reznikov, Harsha H S, Harshit Monish, Heiner, Ilia Sergachev, Jan, Jane Liu, Jaroslav Sevcik, Kaixi Hou, Kanvi Khanna, Kristof Maar, Kristóf Maár, LakshmiKalaKadali, Lbertho-Gpsw, lingzhi98, MarcoFalke, Masahiro Hiramori, Mmakevic-Amd, mraunak, Nobuo Tsukamoto, Notheisz57, Olli Lupton, Pearu Peterson, pemeliya, Peyara Nando, Philipp Hack, Phuong Nguyen, Pol Dellaiera, Rahul Batra, Ruturaj Vaidya, sachinmuradi, Sergey Kozub, Shanbin Ke, Sheng Yang, shengyu, Shraiysh, Shu Wang, Surya, sushreebarsa, Swatheesh-Mcw, syzygial, Tai Ly, terryysun, tilakrayal, Tj Xu, Trevor Morris, Tzung-Han Juang, wenchenvincent, wondertx, Xuefei Jiang, Ye Huang, Yimei Sun, Yunlong Liu, Zahid Iqbal, Zhan Lu, Zoranjovanovic-Ns, Zuri Obozuwa

... (truncated)

Changelog

Sourced from tensorflow's changelog.

Release 2.18.0

TensorFlow

Breaking Changes

• tf.lite

  • C API:
    • An optional, fourth parameter was added TfLiteOperatorCreate as a step forward towards a cleaner API for TfLiteOperator. Function TfLiteOperatorCreate was added recently, in TensorFlow Lite version 2.17.0, released on 7/11/2024, and we do not expect there will be much code using this function yet. Any code breakages can be easily resolved by passing nullptr as the new, 4th parameter.

• TensorRT support is disabled in CUDA builds for code health improvement.

• TensorFlow now supports and is compiled with NumPy 2.0 by default. Please see the NumPy 2 release notes and the NumPy 2 migration guide.

  • Note that NumPy's type promotion rules have been changed(See NEP 50for details). This may change the precision at which computations happen, leading either to type errors or to numerical changes to results.
  • Tensorflow will continue to support NumPy 1.26 until 2025, aligning with community standard deprecation timeline here.

• Hermetic CUDA support is added.

  Hermetic CUDA uses a specific downloadable version of CUDA instead of the user’s locally installed CUDA. Bazel will download CUDA, CUDNN and NCCL distributions, and then use CUDA libraries and tools as dependencies in various Bazel targets. This enables more reproducible builds for Google ML projects and supported CUDA versions.

• Remove the EnumNamesXNNPackFlags function in tensorflow/lite/acceleration/configuration/configuration_generated.h.

  This change is a bug fix in the automatically generated code. This change is automatically generated by the new flatbuffer generator. The flatbuffers library is updated to 24.3.25 in tensorflow/tensorflow@c17d64d. The new flatbuffers library includes the following change google/flatbuffers#7813 which fixed a underlying flatbuffer code generator bug.

Known Caveats

Major Features and Improvements

• tf.lite:
  • The LiteRT repo is live (see announcement), which means that in the coming months there will be changes to the development experience for TFLite. The TF Lite Runtime source will be moved later this year, and sometime after that we will start accepting contributions through that repo.
  • SignatureRunner is now supported for models with no signatures.

Bug Fixes and Other Changes

• tf.data

  • Add optional synchronous argument to map, to specify that the map should run synchronously, as opposed to be parallelizable when options.experimental_optimization.map_parallelization=True. This saves memory compared to setting num_parallel_calls=1.
  • Add optional use_unbounded_threadpool argument to map, to specify that the map should use an unbounded threadpool instead of the default pool that is based on the number of cores on the machine. This can improve throughput for map functions which perform IO or otherwise release the CPU.
  • Add tf.data.experimental.get_model_proto to allow users to peek into the analytical model inside of a dataset iterator.

• tf.lite

  • Dequantize op supports TensorType_INT4.
    • This change includes per-channel dequantization.
  • Add support for stablehlo.composite.
  • EmbeddingLookup op supports per-channel quantization and TensorType_INT4 values.
  • FullyConnected op supports TensorType_INT16 activation and TensorType_Int4 weight per-channel quantization.
  • Enable per-tensor quantization support in dynamic range quantization of TRANSPOSE_CONV layer. Fixes TFLite converter bug.

• tf.tensor_scatter_update, tf.tensor_scatter_add and of other reduce types.

  • Support bad_indices_policy.

... (truncated)

Commits

• 6550e4b Merge pull request #78464 from tensorflow/rtg0795-patch-1
• 7e0c244 Merge pull request #78463 from tensorflow-jenkins/version-numbers-2.18.0-21101
• 35624d2 Update RELEASE.md to move TFLite SignatureRunner to the right section
• 8d2c5e1 Update version numbers to 2.18.0
• d5f4a3f Merge pull request #77589 from tensorflow-jenkins/version-numbers-2.18.0rc2-1...
• 7cbcbf3 Update version numbers to 2.18.0-rc2
• 84c9398 Merge pull request #77576 from tensorflow/r2.18-be4f646ec43
• 8fca5e7 PR #17430: [ROCm] Use unique_ptr for TupleHandle in pjrt_se_client
• 2c3c798 Merge pull request #77025 from tensorflow-jenkins/version-numbers-2.18.0rc1-2...
• 10693a4 Update version numbers to 2.18.0-rc1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coveralls]

Pull Request Test Coverage Report for Build 11549593285

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 80.482%

---

Totals
Change from base Build 11433566473:	0.0%
Covered Lines:	2202
Relevant Lines:	2736

---

💛 - Coveralls