Bump the python-production group across 1 directory with 6 updates

[dependabot]

Bumps the python-production group with 6 updates in the / directory:

Package	From	To
dill	0.3.8	0.3.9
h3	3.7.7	4.1.2
numpy	2.1.1	2.1.2
pyarrow	17.0.0	18.0.0
sql-metadata	2.13.0	2.14.0
sqlalchemy	2.0.35	2.0.36

Updates dill from 0.3.8 to 0.3.9

Commits

• 8372a77 tag: 0.3.9
• 6646459 add formal support for python 3.13 (#681)
• 735ac66 more extensive testing for dill.source (#680)
• fb2b6fd more extensive testing for dill.source
• 8b86f50 handle a ThreadHandleType (#679)
• 15d7c6d better handle import strings of numpy scalars (#678)
• a14e75d account for frame.f_locals as proxy in 3.13 (#677)
• b281426 diff USE_NUMPY imports numpy.ma (#676)
• 9bf8ca7 type check for Integral, bool by value (#675)
• a9d136b fix fencepost error when getting source inside decorator in interpreter (#651)
• Additional commits viewable in compare view

Updates h3 from 3.7.7 to 4.1.2

Commits

• See full diff in compare view

Updates numpy from 2.1.1 to 2.1.2

Release notes

Sourced from numpy's releases.

2.1.2 (Oct 5, 2024)

NumPy 2.1.2 Release Notes

NumPy 2.1.2 is a maintenance release that fixes bugs and regressions discovered after the 2.1.1 release.

The Python versions supported by this release are 3.10-3.13.

Contributors

A total of 11 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

• Charles Harris
• Chris Sidebottom
• Ishan Koradia +
• João Eiras +
• Katie Rust +
• Marten van Kerkwijk
• Matti Picus
• Nathan Goldbaum
• Peter Hawkins
• Pieter Eendebak
• Slava Gorloff +

Pull requests merged

A total of 14 pull requests were merged for this release.

• #27333: MAINT: prepare 2.1.x for further development
• #27400: BUG: apply critical sections around populating the dispatch cache
• #27406: BUG: Stub out get_build_msvc_version if distutils.msvccompiler...
• #27416: BUILD: fix missing include for std::ptrdiff_t for C++23 language...
• #27433: BLD: pin setuptools to avoid breaking numpy.distutils
• #27437: BUG: Allow unsigned shift argument for np.roll
• #27439: BUG: Disable SVE VQSort
• #27471: BUG: rfftn axis bug
• #27479: BUG: Fix extra decref of PyArray_UInt8DType.
• #27480: CI: use PyPI not scientific-python-nightly-wheels for CI doc...
• #27481: MAINT: Check for SVE support on demand
• #27484: BUG: initialize the promotion state to be weak
• #27501: MAINT: Bump pypa/cibuildwheel from 2.20.0 to 2.21.2
• #27506: BUG: avoid segfault on bad arguments in ndarray.__array_function__

Checksums

MD5

4aae28b7919b126485c1aaccee37a6ba  numpy-2.1.2-cp310-cp310-macosx_10_9_x86_64.whl
172614423a82ef73d8752ad8a59cbafc  numpy-2.1.2-cp310-cp310-macosx_11_0_arm64.whl

... (truncated)

Commits

• f5afe3d Merge pull request #27507 from charris/prepare-2.1.2
• 6b9ef48 REL: Prepare for the NumPy 2.1.2 release [wheel build]
• 6d85a24 MAINT: Pin setuptools for Python < 3.12 [wheel build]
• 7f327d8 Merge pull request #27506 from charris/backport-27503
• 09e9cd9 BUG: avoid segfault on bad arguments in ndarray.array_function
• 06b4793 Merge pull request #27501 from charris/backport-27495
• 364efb5 MAINT: Bump pypa/cibuildwheel from 2.21.1 to 2.21.2
• df0e261 Merge pull request #27484 from ngoldbaum/use-weak-default
• fa61bc6 Merge pull request #27481 from charris/backport-27472
• d6d06ae Merge pull request #27480 from charris/backport-27475
• Additional commits viewable in compare view

Updates pyarrow from 17.0.0 to 18.0.0

Release notes

Sourced from pyarrow's releases.

Apache Arrow 18.0.0

Release Notes URL: https://arrow.apache.org/release/18.0.0.html

Apache Arrow 18.0.0 RC0

Release Notes: Release Candidate: 18.0.0 RC0

Commits

• 9105a41 MINOR: [Release] Update versions for 18.0.0
• e47bf46 MINOR: [Release] Update .deb/.rpm changelogs for 18.0.0
• 8567163 MINOR: [Release] Update CHANGELOG.md for 18.0.0
• 5d7987b GH-44422: [Packaging][Release][Linux] Upload artifacts before test (#44425)
• 70a2245 GH-44415: [Release][Ruby] Remove pins from glib section of release verificati...
• 155a42e GH-44342: [C++] Disable jemalloc by default on ARM (#44380)
• 0e184c3 GH-44386: [Integration][Release] Pin Python 3.12 for Integration verification...
• 9812ab7 GH-44381: [Ruby][Release] Pin not only glib but also python on verification j...
• 71bd117 GH-43519: [Python][CI] Add Python 3.13 conda test build (#44192)
• a39090d GH-44373: [Packaging][Java] Fix brew link to Python 3.13 on macOS (#44374)
• Additional commits viewable in compare view

Updates sql-metadata from 2.13.0 to 2.14.0

Release notes

Sourced from sql-metadata's releases.

Fix the MSSQL Unqualified Schema Table Parsing

What's Changed

• Bump pylint from 3.2.6 to 3.2.7 by @​dependabot in macbre/sql-metadata#524
• Bump pytest from 8.3.2 to 8.3.3 by @​dependabot in macbre/sql-metadata#527
• Handle when column name wildcard is prefixed by table name #296 by @​macbre in macbre/sql-metadata#330
• fixes #475 MSSQL Unqualified Schema Table Parsing by @​T-Santos in macbre/sql-metadata#530

Full Changelog: macbre/sql-metadata@v2.13.0...v2.14.0

Commits

• 18ec5ea v2.14.0
• da144a4 MSSQL Unqualified Schema Table Parsing (#530)
• 8bdc496 Handle when column name wildcard is prefixed by table name #296 (#330)
• c2849ea Bump pytest from 8.3.2 to 8.3.3 (#527)
• 2b72be5 Bump pylint from 3.2.6 to 3.2.7 (#524)
• See full diff in compare view

Updates sqlalchemy from 2.0.35 to 2.0.36

Release notes

Sourced from sqlalchemy's releases.

2.0.36

Released: October 15, 2024

orm

• [orm] [usecase] Added new parameter _orm.mapped_column.hash to ORM constructs such as _orm.mapped_column(), _orm.relationship(), etc., which is interpreted for ORM Native Dataclasses in the same way as other dataclass-specific field parameters.

  References: #11923

• [orm] [bug] Fixed bug in ORM bulk update/delete where using RETURNING with bulk update/delete in combination with populate_existing would fail to accommodate the populate_existing option.

  References: #11912

• [orm] [bug] Continuing from #11912, columns marked with mapped_column.onupdate, mapped_column.server_onupdate, or Computed are now refreshed in ORM instances when running an ORM enabled UPDATE with WHERE criteria, even if the statement does not use RETURNING or populate_existing.

  References: #11917

• [orm] [bug] Fixed regression caused by fixes to joined eager loading in #11449 released in 2.0.31, where a particular joinedload case could not be asserted correctly. We now have an example of that case so the assertion has been repaired to allow for it.

  References: #11965

• [orm] [bug] Improved the error message emitted when trying to map as dataclass a class while also manually providing the __table__ attribute. This usage is currently not supported.

  References: #11973

• [orm] [bug] Refined the check which the ORM lazy loader uses to detect "this would be loading by primary key and the primary key is NULL, skip loading" to take into account the current setting for the orm.Mapper.allow_partial_pks parameter. If this parameter is False, then a composite PK value that has partial NULL elements should also be skipped. This can apply to some composite overlapping foreign key configurations.

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #18.