chore(deps): bump the pip group across 1 directory with 6 updates

[dependabot]

Updates the requirements on authlib, scikit-learn, transformers, qdrant-client, azure-storage-blob and azure-identity to permit the latest version.
Updates authlib from 1.2.0 to 1.3.1

Release notes

Sourced from authlib's releases.

Version 1.3.1

Prevent OctKey to import ssh and PEM strings.

Version 1.3.0

Bug fixes

• Restore AuthorizationServer.create_authorization_response behavior, via #558 by @​TurnrDev
• Include leeway in validate_iat() for JWT, via #565 by @​dhallam
• Fix encode_client_secret_basic, via #594 by @​Prilkop
• Use single key in JWK if JWS does not specify kid, via #596 by @​dklimpel
• Fix error when RFC9068 JWS has no scope field, via #598 by @​tanguilp
• Get werkzeug version using importlib, via #591 by @​Sparrow0hawk

Breaking changes

• RFC9068 implementation, via #586 by @​azmeuk.

Version 1.2.1

• Apply headers in ClientSecretJWT.sign method, via #552
• Allow falsy but non-None grant uri params, via #544
• Fixed authorize_redirect for Starlette v0.26.0, via #533
• Removed has_client_secret method and documentation, via #513
• Removed request_invalid and token_revoked remaining occurences and documentation. #514
• Fixed RFC7591 grant_types and response_types default values, via #509
• Add support for python 3.12, via #590

Changelog

Sourced from authlib's changelog.

Version 1.3.1

Released on June 4, 2024

• Prevent OctKey to import ssh and PEM strings.

Version 1.3.0

Released on Dec 17, 2023

• Restore AuthorizationServer.create_authorization_response behavior, via :PR:558
• Include leeway in validate_iat() for JWT, via :PR:565
• Fix encode_client_secret_basic, via :PR:594
• Use single key in JWK if JWS does not specify kid, via :PR:596
• Fix error when RFC9068 JWS has no scope field, via :PR:598
• Get werkzeug version using importlib, via :PR:591

New features:

• RFC9068 implementation, via :PR:586, by @​azmeuk.

Breaking changes:

• End support for python 3.7

Version 1.2.1

Released on Jun 25, 2023

• Apply headers in ClientSecretJWT.sign method, via :PR:552
• Allow falsy but non-None grant uri params, via :PR:544
• Fixed authorize_redirect for Starlette v0.26.0, via :PR:533
• Removed has_client_secret method and documentation, via :PR:513
• Removed request_invalid and token_revoked remaining occurences and documentation. :PR:514
• Fixed RFC7591 grant_types and response_types default values, via :PR:509.
• Add support for python 3.12, via :PR:590.

Commits

• df226ab chore: release 1.3.1
• 3bea812 fix: prevent OctKey to import ssh/rsa/pem keys
• a7d68b4 chore: release 1.3.0
• a26f1d0 Merge GitHub action for release
• 2d66702 Merge pull request #591 from Sparrow0hawk/patch-2
• 0f8e087 docs: add changelog for 1.3.0
• 3ffc950 chore: fix pypi release action
• a2543b9 chore: add pypi github action
• c7e1b2d chore: move configuration from setup.cfg to pyproject.toml
• 04e83f6 Merge pull request #598 from tanguilp/fix-rfc9068-no-scope-in-jws
• Additional commits viewable in compare view

Updates scikit-learn from 1.2.2 to 1.5.0

Release notes

Sourced from scikit-learn's releases.

Scikit-learn 1.5.0

We're happy to announce the 1.5.0 release.

You can read the release highlights under https://scikit-learn.org/stable/auto_examples/release_highlights/plot_release_highlights_1_5_0.html and the long version of the change log under https://scikit-learn.org/stable/whats_new/v1.5.html

This version supports Python versions 3.9 to 3.12.

You can upgrade with pip as usual:

pip install -U scikit-learn

The conda-forge builds can be installed using:

conda install -c conda-forge scikit-learn

Scikit-learn 1.4.2

We're happy to announce the 1.4.2 release.

This release only includes support for numpy 2.

This version supports Python versions 3.9 to 3.12.

You can upgrade with pip as usual:

pip install -U scikit-learn

Scikit-learn 1.4.1.post1

We're happy to announce the 1.4.1.post1 release.

You can see the changelog here: https://scikit-learn.org/stable/whats_new/v1.4.html#version-1-4-1-post1

This version supports Python versions 3.9 to 3.12.

You can upgrade with pip as usual:

pip install -U scikit-learn

The conda-forge builds can be installed using:

conda install -c conda-forge scikit-learn

... (truncated)

Commits

• b51d0c9 trigger whell builder [cd build]
• 919ae9b MAINT Reoder what's new for 1.5 (#29039)
• 0ac28ad DOC Release highlights 1.5 (#29007)
• 729b54d test py3.12 against numpy 2 [cd build]
• 1e50434 set version
• ffbe4ab DOC remove obsolete SVM example (#27108)
• 4647729 DOC Fix time complexity of MLP (#28592)
• 9bd7047 FIX convergence criterion of MeanShift (#28951)
• b79420f FIX add long long for int32/int64 windows compat in NumPy 2.0 (#29029)
• 37f544d DOC replace pandas with Polars in examples/gaussian_process/plot_gpr_co2.py (...
• Additional commits viewable in compare view

Updates transformers to 4.41.2

Release notes

Sourced from transformers's releases.

Release v4.41.2

Mostly fixing some stuff related to trust_remote_code=True and from_pretrained

The local_file_only was having a hard time when a .safetensors file did not exist. This is not expected and instead of trying to convert, we should just fallback to loading the .bin files.

• Do not trigger autoconversion if local_files_only #31004 from @​Wauplin fixes this!
• Paligemma: Fix devices and dtype assignments (#31008) by @​molbap
• Redirect transformers_agents doc to agents (#31054) @​aymeric-roucher
• Fix from_pretrained in offline mode when model is preloaded in cache (#31010) by @​oOraph
• Fix faulty rstrip in module loading (#31108) @​Rocketknight1

Commits

• ab0f050 Release: v4.41.2
• 57f5553 Fix faulty rstrip in module loading (#31108)
• 73b180c fix from_pretrained in offline mode when model is preloaded in cache (#31010)
• a6325a7 Redirect transformers_agents doc to agents (#31054)
• 9ccdc84 Paligemma- fix devices and dtype assignments (#31008)
• 12aa316 Do not trigger autoconversion if local_files_only (#31004)
• 75f15f3 Release: v4.41.1
• 8282db5 Paligemma causal attention mask (#30967)
• e5b788a Revert "feat: Upgrade Weights & Biases callback (#30135)"
• 9d05459 Generation: get special tokens from model config (#30899)
• Additional commits viewable in compare view

Updates qdrant-client from 1.7.3 to 1.9.0

Release notes

Sourced from qdrant-client's releases.

v1.9.0

Changelog

Features 🪄

• #571 add discovery and recommendations api support for sparse vectors in local mode
• #594 restrict access to the methods on a closed instance in local mode
• #591 add a possibility to use auth token providers
• #608 introduce support for uint8 vectors
• #603 allow having nan values in payload in local mode

---

Fixes 🪛

• #559 - fix update_vectors in local mode with sparse vectors
• #562 - fix handling of wrong types in search in local mode
• #560 - check vectors for nan values
• #569 - fix grpc sparse vector conversion
• #575 #576 #580 - fix datetime and date comparison
• #581 #583 fix sparse vectors async api
• #584 fix data-parallelism with sparse models
• #587 fix read consistency with grpc in batch search
• #588 fix migrate vector count
• #605 fix grpc field schema type conversion for datetime index

---

Deprecations ⏳

• #608 deprecate recreate collection method
• #608 remove vectors count

---

Thanks everyone who contributed to the release @​coszio @​yasyf @​Apmats @​skvark @​generall @​joein @​agourlay

v1.8.2

Changelog

Fixes 🪛

• remove redundant pytest import which prevented qdrant-client import without pytest being installed by @​joein

v1.8.1

Changelog

Features 🪄

• update fastembed integration, incorporate hybrid search into add method #553 by @​generall @​joein

---

Fixes 🪛

• fix excess upsert requests in upload_collection and upload_points #531 by @​almostimplemented
• allow set payload with a nested key #536 by @​joein
• add missing datetime formats to local mode #537 by @​joein
• fix congruence for naive and aware datetime in local mode #538 by @​joein
• propagate timeouts from methods to httpx #534 by @​joein

---

Thanks everyone who contributed to the release @​almostimplemented @​generall @​joein

v1.8.0

... (truncated)

Commits

• 16fb1f6 bump version to v1.9.0
• 6b001b8 V1.9.x (#608)
• e0820e0 fix: align formatters versions (#602)
• 93a2c2d new: convert nan and inf in local mode to none (#603)
• 1983900 docs: typo fix of extra word in quickstart
• eee34e8 deprecate recreate_collection (#601)
• 0ce5ca0 do not use vectors_count in test and in local mode (#600)
• a7a798c fix: fix field schema type conversion (#605)
• bbe0131 Remove warning for scalar divide with inf
• ef8e772 Feat: bearer token authentication support (#591)
• Additional commits viewable in compare view

Updates azure-storage-blob from 12.9.0 to 12.13.0

Commits

• e90af43 DataLake funny dependency (#25129)
• cbec338 [AutoRelease] t2-storagecache-2022-07-06-35884(Do not merge) (#25089)
• dc7c5a1 [Storage] API View Feedback For STG84 GA (#25085)
• 9f66f6b [Storage] Revert removing aiohttp dependency for storage.blob.aio (#25084)
• e40d3e1 [storage.blob] Remove aiohttp as dependency for storage.blob.aio (#24965)
• 7915719 [Storage] Prepare for STG83 GA release (#25040)
• 155eb8b [Storage] Add progress_hook to file-share upload/download (#24997)
• 66dd3be [Storage] Fix more flaky lease tests (#25011)
• 0301417 [Storage] Add argument to perf tests to use client-side encryption (#24978)
• 4899065 [perf] Add pipeline template and storage pipelines (#24894)
• Additional commits viewable in compare view

Updates azure-identity from 1.15.0 to 1.16.1

Release notes

Sourced from azure-identity's releases.

azure-identity_1.16.1

1.16.1 (2024-06-11)

Bugs Fixed

• Managed identity bug fixes

Commits

• 6a07fc9 [Identity] Fix device code tests (#35846)
• e16a704 [Identity] Add Azure Arc key validation checks
• 95c5f2a Update release dates (#35091)
• c58bfa7 [Identity] Adjust IMDS retry backoff (#35070)
• 6680ffc [Identity] Update broker docs (#35032)
• 1ade699 [Identity] Update live test config (#35019)
• 66efa24 Update Authorization Code client_secret kwarg usage (#34862)
• 6f79b4d Fix WAM default account code sample (#35007)
• 4348985 Update default broker account sample (#35003)
• 0527e86 [skip ci] Delete azure-devtools and deps/references
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.