Skip to content

Bump the release-validation-environment group across 1 directory with 9 updates#18

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/maia2/release-validation-environment-5f8e30bed3
Closed

Bump the release-validation-environment group across 1 directory with 9 updates#18
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/maia2/release-validation-environment-5f8e30bed3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown

Bumps the release-validation-environment group with 9 updates in the /maia2 directory:

Package From To
chess 1.10.0 1.11.2
einops 0.8.0 0.8.2
gdown 5.2.2 6.1.0
numpy 2.1.3 2.5.1
pandas 2.2.3 3.0.3
pyyaml 6.0.2 6.0.3
requests 2.33.0 2.34.2
torch 2.8.0 2.13.0
tqdm 4.66.3 4.68.4

Updates chess from 1.10.0 to 1.11.2

Changelog

Sourced from chess's changelog.

New in v1.11.2 (25th Feb 2025)

Bugfixes:

  • Fix chess.gaviota.PythonTablebase does not properly resolve positions where en passant captures are the best move.

New in v1.11.1 (9th Oct 2024)

Bugfixes:

  • chess.engine: Fix parsing of UCI options containing containing name, type, default, min, or max, e.g., mini.

New in v1.11.0 (4th Oct 2024)

Changes:

  • Drop support for Python 3.7, which has reached its end of life.
  • chess.engine.EventLoopPolicy is no longer needed and now merely an alias for the default event loop policy.
  • If available and requested via setpgrp, use process_group support from Python 3.11 for engine processes.
  • No longer eagerly reject 8 piece positions in chess.syzygy, so that some 8 piece positions with decisive captures can be probed successfully.
  • The string wrapper returned by chess.svg functions now also implements _repr_html_.
  • Significant changes to chess.engine internals: chess.engine.BaseCommand methods other than the constructor no longer receive engine: Protocol.
  • Significant changes to board state internals: Subclasses of chess.Board can no longer hook into board state recording/restoration and need to override relevant methods instead (clear_stack, copy, root, push, pop).

New features:

  • Add chess.pgn.Game.time_control() and related data models.
  • Add model sf16.1 for chess.engine.Score.wdl(), the new default.

Bugfixes:

  • Fix unsolicited engine output may cause assertion errors with regard to command states.
  • Fix handling of whitespace in UCI engine communication.
  • For chess.Board.epd() and chess.Board.set_epd(), require that EPD opcodes start with a letter.
Commits
  • 3516d7c Supprt Python 3.13
  • cafff1c Prepare 1.11.2
  • 398fcc0 Fix checkmating ep capture in chess.gaviota.PythonTablebase
  • f8afc57 Fix ep resolution in chess.gaviota.PythonTablebase (fixes #1132)
  • ffc6da9 Prepare 1.11.1
  • fa4f014 Merge pull request #1113 from MarkZH/options-fix
  • 08697b2 Fix twine usage, stop uploading wheels
  • 46c2888 Revert "Removed unnecessary indentation blocks and updated conditional statem...
  • 30d9910 Prepare 1.11.0
  • c0d3c91 chess_init_.py superfluous-parens
  • Additional commits viewable in compare view

Updates einops from 0.8.0 to 0.8.2

Release notes

Sourced from einops's releases.

v0.8.1 Multiple improvements

What's Changed

TLDR:

  • ellipsis is added to EinMix
  • tests moved into the package
  • devcontainer provided
  • added backend for pyTensor
  • niceties: citation, docs, fixed broken links
  • this did not require any changes in einops, but array API is supported by more libs these days, and einops can operate on them

PRs:

New Contributors

Full Changelog: arogozhnikov/einops@v0.8.0...v0.8.1

Commits

Updates gdown from 5.2.2 to 6.1.0

Release notes

Sourced from gdown's releases.

v6.1.0

This release adds a new --json flag for inspecting Google Drive file and folder contents without downloading them.

Highlights

  • New --json flag lists the file or folder contents as a JSON array on stdout instead of downloading, so you can resolve filenames and IDs before fetching anything. It is in beta and its output format may change in a future release.

Features

  • Add a --json flag that prints file or folder contents as a JSON array of {"url", "path"} entries instead of downloading. Paths use POSIX separators on all platforms, and the flag cannot be combined with -O/--output. (#460, #463)

    # Resolve a single file's name without downloading it
    filename=$(gdown "$url" --json | jq -r '.[0].path')
    List every file in a folder
    gdown https://drive.google.com/drive/folders/FOLDER_ID --folder --json

  • Add a skip_download parameter to download() that resolves the target filename and ID without fetching the file, returning a GoogleDriveFileToDownload. (#463)

  • --json now prints a one-time beta warning to stderr, which --quiet suppresses. (#465)

Other

  • Bump urllib3 from 2.6.3 to 2.7.0. (#457)
  • Bump idna from 3.11 to 3.15. (#459)
  • Configure agent skills for the repository (AGENTS.md, CLAUDE.md, docs/agents/). (#462)

v6.0.0

A lot has changed since v5.2.1 back in January. 33 pull requests (109 commits) went into this release, touching nearly every part of the codebase.

Highlights

  • gdown --folder / download_folder() now supports folders with more than 50 files
  • download() raises DownloadError on failure instead of returning None
  • New progress parameter in download()
  • Path traversal vulnerability fixed in extractall() (GHSA-76hw-p97h-883f)
  • All deprecated APIs from v5 have been (finally) removed
  • Python 3.10+ required (3.8 and 3.9 dropped)

Most users should be able to upgrade without issues. The one change that will likely need code updates is the switch from returning None to raising DownloadError on failure.

Breaking changes

  • download() and download_folder() now raise DownloadError instead of returning None (#451)

    Previously, download() and download_folder() returned None when a download failed. Now, they raise DownloadError (or its subclass FileURLRetrievalError).

    If your code looks like this:

... (truncated)

Commits
  • fba3f9a Merge pull request #465 from wkentaro/feat/json-beta-warning
  • d91a180 feat(cli): mark --json as beta with a suppressible warning
  • be400b6 Merge pull request #464 from wkentaro/docs/json-readme-ext
  • 3466fbb docs: simplify --json extension example with shell expansion
  • eaef5a1 Merge pull request #463 from wkentaro/feat/json-single-file
  • 5ae36fc docs: correct download() return type in ADR and CONTEXT
  • 057f7ff test(download): assert skip_download returns GoogleDriveFileToDownload
  • 7764313 docs: document single-file --json and capture design decisions
  • 6597898 feat(cli): support --json for single files
  • 61181bd feat(download): add skip_download to resolve filename without downloading
  • Additional commits viewable in compare view

Updates numpy from 2.1.3 to 2.5.1

Release notes

Sourced from numpy's releases.

v2.5.1 (July 4, 2026)

NumPy 2.5.1 Release Notes

The NumPy 2.5.1 is a patch release that fixes bugs discovered after the 2.5.0 release. The most noticeable is the fix is to the numpy datetime cython API which should allow downstream to support NumPy versions older than 2.5. Preparation for Python 3.15 continues along with typing improvements.

This release supports Python versions 3.12-3.14

Changes

  • The minimum supported GCC version has been updated from 9.3.0 to 10.3.0

    (gh-31843)

Contributors

A total of 10 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

  • Adhyan Gupta +
  • Ankit Ahlawat
  • Charles Harris
  • Iason Krommydas
  • Joren Hammudoglu
  • Kumar Aditya
  • Nathan Goldbaum
  • Sebastian Berg
  • Ties Jan Hefting +
  • Vineet Kumar

Pull requests merged

A total of 20 pull requests were merged for this release.

  • #31707: MAINT: Prepare 2.5.x for further development
  • #31721: CI: fix new cython-lint errors (#31711)
  • #31723: MAINT: Update meson to match main
  • #31729: TST: use setup-sde instead of curl to get SDE binaries (#31727)
  • #31829: BUG: Relax finfo to be easier accessible for all user dtypes...
  • #31831: TYP: Fix flatiter.__next__ return type for object_ and...
  • #31832: BUG: avoid deadlocks using NpyString API (#31682)
  • #31833: BUG: fix out array leak in reduceat and accumulate when dtype...
  • #31835: BUG: fix numpy datetime cython APIs to be compatible with older...
  • #31836: TYP: Fix incorrect dtype inference of asarray([]) (#31732)
  • #31837: TYP: Fix np.ma.masked_array 2.5.0 regression
  • #31838: FIX: Refactor error handling in array_setstate to prevent typecode...
  • #31839: TST: xfail multithreaded BLAS test more generously
  • #31840: MAINT: Rename subroutine for crackfortran tests

... (truncated)

Changelog

Sourced from numpy's changelog.

This is a walkthrough of the NumPy 2.4.0 release on Linux, which will be the first feature release using the numpy/numpy-release <https://github.com/numpy/numpy-release>__ repository.

The commands can be copied into the command line, but be sure to replace 2.4.0 with the correct version. This should be read together with the :ref:general release guide <prepare_release>.

Facility preparation

Before beginning to make a release, use the requirements/*_requirements.txt files to ensure that you have the needed software. Most software can be installed with pip, but some will require apt-get, dnf, or whatever your system uses for software. You will also need a GitHub personal access token (PAT) to push the documentation. There are a few ways to streamline things:

  • Git can be set up to use a keyring to store your GitHub personal access token. Search online for the details.

Prior to release

Add/drop Python versions

When adding or dropping Python versions, multiple config and CI files need to be edited in addition to changing the minimum version in pyproject.toml. Make these changes in an ordinary PR against main and backport if necessary. We currently release wheels for new Python versions after the first Python RC once manylinux and cibuildwheel support that new Python version.

Backport pull requests

Changes that have been marked for this release must be backported to the maintenance/2.4.x branch.

Update 2.4.0 milestones

Look at the issues/prs with 2.4.0 milestones and either push them off to a later version, or maybe remove the milestone. You may need to add a milestone.

Check the numpy-release repo

... (truncated)

Commits
  • 5e1d03f Merge pull request #31863 from charris/prepare-2.5.1
  • ad0b66b REL: Prepare for the NumPy 2.5.1 release.
  • 9df8516 Merge pull request #31858 from charris/backport-31688
  • 4dee265 Merge pull request #31857 from charris/backport-31775
  • dc8d553 Merge pull request #31856 from charris/backport-31846
  • 67cb4a8 fix:Signed integer overflow in datetime.c (#31688)
  • baa2589 TST: Clean up imports, formatting, and assertions
  • 2fe5ba4 TEST: Refactor tests to use np.testing.assert_raises_regex per review
  • bb46581 MAINT: Remove deprecated Python recursion fix
  • 8f34214 MAINT: Move SeedSequence recursion guard to C-layer and add tests
  • Additional commits viewable in compare view

Updates pandas from 2.2.3 to 3.0.3

Release notes

Sourced from pandas's releases.

pandas 3.0.3

We are pleased to announce the release of pandas 3.0.3. This is a patch release in the 3.0.x series and includes some regression fixes and bug fixes. We recommend that all users of the 3.0.x series upgrade to this version.

See the full whatsnew for a list of all the changes.

Pandas 3.0 supports Python 3.11 and higher. The release can be installed from PyPI:

python -m pip install --upgrade pandas==3.0.*

Or from conda-forge

conda install -c conda-forge pandas=3.0

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

pandas 3.0.2

We are pleased to announce the release of pandas 3.0.2. This is a patch release in the 3.0.x series and includes some regression fixes and bug fixes. We recommend that all users of the 3.0.x series upgrade to this version.

See the full whatsnew for a list of all the changes.

Pandas 3.0 supports Python 3.11 and higher. The release can be installed from PyPI:

python -m pip install --upgrade pandas==3.0.*

Or from conda-forge

conda install -c conda-forge pandas=3.0

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

pandas 3.0.1

We are pleased to announce the release of pandas 3.0.1. This is a patch release in the 3.0.x series and includes some regression fixes and bug fixes. We recommend that all users of the 3.0.x series upgrade to this version.

See the full whatsnew for a list of all the changes.

Pandas 3.0.0 supports Python 3.11 and higher. The release can be installed from PyPI:

python -m pip install --upgrade pandas==3.0.*

Or from conda-forge

... (truncated)

Commits
  • 72f2fea RLS: 3.0.3 (#65590)
  • 2897590 Backport PR #65436 on branch 3.0.x (Account for privatization of matplotlib `...
  • 49894b5 Backport PR #65499 on branch 3.0.x (BUG: fix check if pyarrow is installed in...
  • 1c6d1e3 [backport 3.0.x] PERF: remove special casing for zoneinfo in tz_localize_to_u...
  • 2a54711 Backport PR #64379 on branch 3.0.x (PERF: improve performance with ZoneInfo t...
  • 036bb7c Backport PR #65482 on branch 3.0.x (PERF: don't call unique on dtypes for che...
  • bf4c182 Backport PR #65410 on branch 3.0.x (TST: also convert str index to object in ...
  • dd02d75 [backport 3.0.x] BUG: keep fsspec OpenFile alive for chained URL reads (#6547...
  • aef3d0f [backport 3.0.x] CI: lowercase types-pymysql/types-pyyaml to fix mamba 2.6.0 ...
  • bb8e248 Backport PR #65399 on branch 3.0.x (DOC: fix source link for classes in the r...
  • Additional commits viewable in compare view

Updates pyyaml from 6.0.2 to 6.0.3

Release notes

Sourced from pyyaml's releases.

6.0.3

What's Changed

  • Support for Python 3.14 and free-threading (experimental).

Full Changelog: yaml/pyyaml@6.0.2...6.0.3

Changelog

Sourced from pyyaml's changelog.

6.0.3 (2025-09-25)

  • yaml/pyyaml#864 -- Support for Python 3.14 and free-threading (experimental)
Commits

Updates requests from 2.33.0 to 2.34.2

Release notes

Sourced from requests's releases.

v2.34.2

2.34.2 (2026-05-14)

  • Moved headers input type back to Mapping to avoid invariance issues with MutableMapping and inferred dict types. Users calling Request.headers.update() may need to narrow typing in their code. (#7441)

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2342-2026-05-14

v2.34.1

2.34.1 (2026-05-13)

Bugfixes

  • Widened json input type from dict and list to Mapping and Sequence. (#7436)
  • Changed headers input type to MutableMapping and removed None from Request.headers typing to improve handling for users. (#7431)
  • Response.reason moved from str | None to str to improve handling for users. (#7437)
  • Fixed a bug where some bodies with custom __getattr__ implementations weren't being properly detected as Iterables. (#7433)

New Contributors

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2341-2026-05-13

v2.34.0

2.34.0 (2026-05-11)

Announcements

  • Requests 2.34.0 introduces inline types, replacing those provided by typeshed. Public API types should be fully compatible with mypy, pyright, and ty. We believe types are comprehensive but if you find issues, please report them to the pinned tracking issue.

    Special thanks to @​bastimeyer, @​cthoyt, @​edgarrmondragon, and @​srittau for helping review and test the types ahead of the release. (#7272)

Improvements

  • Digest Auth hashing algorithms have added usedforsecurity=False to clarify security considerations. (#7310)
  • Requests added support for Python 3.15 based on beta1. Downstream projects should be able to start testing prior to its release in October. (#7422)
  • Requests added support for Python 3.14t. (#7419)

Bugfixes

  • Response.history no longer contains a reference to itself, preventing accidental looping when traversing the history list. (#7328)
  • Requests no longer performs greedy matching on no_proxy domains. The

... (truncated)

Changelog

Sourced from requests's changelog.

2.34.2 (2026-05-14)

  • Moved headers input type back to Mapping to avoid invariance issues with MutableMapping and inferred dict types. Users calling Request.headers.update() may need to narrow typing in their code. (#7441)

2.34.1 (2026-05-13)

Bugfixes

  • Widened json input type from dict and list to Mapping and Sequence. (#7436)
  • Changed headers input type to MutableMapping and removed None from Request.headers typing to improve handling for users. (#7431)
  • Response.reason moved from str | None to str to improve handling for users. (#7437)
  • Fixed a bug where some bodies with custom __getattr__ implementations weren't being properly detected as Iterables. (#7433)

2.34.0 (2026-05-11)

Announcements

  • Requests 2.34.0 introduces inline types, replacing those provided by typeshed. Public API types should be fully compatible with mypy, pyright, and ty. We believe types are comprehensive but if you find issues, please report them to the pinned tracking issue.

    Special thanks to @​bastimeyer, @​cthoyt, @​edgarrmondragon, and @​srittau for helping review and test the types ahead of the release. (#7272)

Improvements

  • Digest Auth hashing algorithms have added usedforsecurity=False to clarify security considerations. (#7310)
  • Requests added support for Python 3.15 based on beta1. Downstream projects should be able to start testing prior to its release in October. (#7422)
  • Requests added support for Python 3.14t. (#7419)

Bugfixes

  • Response.history no longer contains a reference to itself, preventing accidental looping when traversing the history list. (#7328)
  • Requests no longer performs greedy matching on no_proxy domains. The proxy_bypass implementation has been updated with CPython's fix from bpo-39057. (#7427)
  • Requests no longer incorrectly strips duplicate leading slashes in URI paths. This should address user issues with specific presigned URLs. Note the full fix requires urllib3 2.7.0+. (#7315)

... (truncated)

Commits

Updates torch from 2.8.0 to 2.13.0

Release notes

Sourced from torch's releases.

PyTorch 2.13.0 Release Notes

Highlights

For more details about these highlighted features, you can look at the release blogpost. Below are the full release notes for this release.

Tracked Regressions

ROCm wheels break torch.compile on CPU in environments without a GPU

Running a torch==2.13.0+rocm7.2 wheel in an environment where no GPU is available (torch.cuda.is_available() is False) breaks torch.compile on the CPU path: the first compile raises RuntimeError: Can't detect vectorized ISA for CPU (#189194). This is a regression from torch==2.12.1+rocm7.2, which compiles CPU code fine (detecting e.g. VecAVX2) in the same setup. The 2.13 ROCm wheel appears to rely on something present in the ROCm builder image to detect the CPU vectorized ISA, so it works when run on a ROCm image but fails on a plain CPU-only image.

Workaround: run the +rocm wheel on a ROCm image, or install a standard CPU/CUDA build for GPU-less environments.

Backwards Incompatible Changes

  • Stop building CPython 3.13t (free-threaded) binaries (#182951)

    Upstream pypa/manylinux removed CPython 3.13t (free-threaded) on 2026-05-07, because 3.13t was experimental and has been superseded by the now-non-experimental CPython 3.14t. As a result, PyTorch 2.13 no longer ships cp313t wheels (Linux, Triton, and related artifacts). Users on the free-threaded interpreter should move to Python 3.14t.

    PyTorch 2.12:

    # cp313t (free-threaded 3.13) wheels were available
    python3.13t -m pip install torch

    PyTorch 2.13:

... (truncated)

Commits
  • cf30153 [release/2.13] Strip +PTX from CUDA arch list on release/RC builds (#188914) ...
  • 3e3e24b [release/2.13] Restrict cuda-bindings to Python < 3.15 for CUDA 12.9 builds (...
  • 7986b06 [release/2.13] Bump binary build timeout 280 -> 400 minutes (#188551)
  • 0bdbc26 [release/2.13] Add CUDA 12.9 to TORCH_CUDA_ARCH_LIST tables (#188443)
  • 9cabb45 [release/2.13] Update manywheel docker image pin to 78e737ad (#188409)
  • 78e737a [release/2.13] Revert "Tighten generalized scatter graph target (#184075)" (#...
  • 0bb9b5b [release/2.13] Revert "dynamo: round-trip torch.cuda.stream ctx mgr across gr...
  • aaac2bf [release/2.13] Revert "[Reland] Port D104346887/PR 182675 for index_add fast ...
  • 9330813 Fix build_with_debinfo.py broken by CONFIGURE_DEPENDS globbing (#188192)
  • 4e077a7 Remove setuptools upper bound (#188190)
  • Additional commits viewable in compare view

Updates tqdm from 4.66.3 to 4.68.4

Release notes

Sourced from tqdm's releases.

tqdm v4.68.4 stable

  • trim to ncols even when '{bar}' not in bar_format (#1717, #1767 <- #1658)
  • fix tqdm.write when stdout=None (#1768)

tqdm v4.68.3 stable

  • utils: delay os.get_terminal_size (#1763 <- #1760)
  • autonotebook: support QtConsole, Spyder, JupyterLite (#1763, #1628, #1559 <- #1283, #1098, #512)
  • minor docs updates
    • fix typo (#1762)
    • use git-fame
  • misc minor framework updates
    • fix & update CI build
    • pre-commit: add docs & metadata generation
    • move tox.ini -> pyproject.toml, move tox-gh-actions -> tox-gh
    • add Python 3.14, drop 3.7 support

tqdm v4.68.2 stable

  • revert accidental change to ascii default (fixes #1760)
    • UnicodeEncodeError: 'charmap' codec can't encode characters in position 6-7: character maps to <undefined> can be fixed by installing tqdm!=4.68.0,!=4.68.1
  • misc docs updates
    • fix links
    • replace stray rst -> md syntax
    • consistent "progress bar" terminology (#1737)
  • tests: fix coverage (fixes #1760)

tqdm v4.68.1 stable

tqdm v4.68.0 stable

  • utils: simplify terminal size detection (#1760)
  • contrib
    • itertools (#1760)
      • add chain, permutations, combinations, combinations_with_replacement, batched
      • add product(repeat=1) keyword argument (#1428)
    • fix discord, telegram error handling
    • fix discord, slack, telegram format for total=None
  • soft-deprecate tqdm.utils.envwrap -> envwrap
  • benchmarks: fix asv
  • misc linting
  • misc framework updates
    • CI: migrate manual job to pre-commit.ci
    • bump workflow actions & pre-commit hooks

tqdm v4.67.3 stable

tqdm v4.67.2 stable

... (truncated)

Commits
  • 53d096e bump version, merge pull request #1768 from its-Sohan/fix/write-stdout-none
  • 74ff992 fix: prevent tqdm.write from crashing when sys.stdout is none
  • 3757d0d Merge pull requests #1717 and #1767 (fixes #1658)
  • 55156ce fix: apply disp_trim to all format_meter return paths (#1658)
  • 9aff609 bump version, merge pull request #1763 from tqdm/jupyterlite
  • 9872f80 drop date from snap version str to fix pydantic
  • b829334 support QtConsole, Spyder, JupyterLite
  • 6fa4867 delay os.get_terminal_size
  • 748e107 lint
  • e6e29eb move tox.ini -> pyproject.toml
  • Additional commits viewable in compare view

@dependabot @github

dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown
Author

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

… 9 updates

Bumps the release-validation-environment group with 9 updates in the /maia2 directory:

| Package | From | To |
| --- | --- | --- |
| [chess](https://github.com/niklasf/python-chess) | `1.10.0` | `1.11.2` |
| [einops](https://github.com/arogozhnikov/einops) | `0.8.0` | `0.8.2` |
| [gdown](https://github.com/wkentaro/gdown) | `5.2.2` | `6.1.0` |
| [numpy](https://github.com/numpy/numpy) | `2.1.3` | `2.5.1` |
| [pandas](https://github.com/pandas-dev/pandas) | `2.2.3` | `3.0.3` |
| [pyyaml](https://github.com/yaml/pyyaml) | `6.0.2` | `6.0.3` |
| [requests](https://github.com/psf/requests) | `2.33.0` | `2.34.2` |
| [torch](https://github.com/pytorch/pytorch) | `2.8.0` | `2.13.0` |
| [tqdm](https://github.com/tqdm/tqdm) | `4.66.3` | `4.68.4` |



Updates `chess` from 1.10.0 to 1.11.2
- [Release notes](https://github.com/niklasf/python-chess/releases)
- [Changelog](https://github.com/niklasf/python-chess/blob/master/CHANGELOG.rst)
- [Commits](niklasf/python-chess@v1.10.0...v1.11.2)

Updates `einops` from 0.8.0 to 0.8.2
- [Release notes](https://github.com/arogozhnikov/einops/releases)
- [Commits](arogozhnikov/einops@v0.8.0...v0.8.2)

Updates `gdown` from 5.2.2 to 6.1.0
- [Release notes](https://github.com/wkentaro/gdown/releases)
- [Commits](wkentaro/gdown@v5.2.2...v6.1.0)

Updates `numpy` from 2.1.3 to 2.5.1
- [Release notes](https://github.com/numpy/numpy/releases)
- [Changelog](https://github.com/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst)
- [Commits](numpy/numpy@v2.1.3...v2.5.1)

Updates `pandas` from 2.2.3 to 3.0.3
- [Release notes](https://github.com/pandas-dev/pandas/releases)
- [Commits](pandas-dev/pandas@v2.2.3...v3.0.3)

Updates `pyyaml` from 6.0.2 to 6.0.3
- [Release notes](https://github.com/yaml/pyyaml/releases)
- [Changelog](https://github.com/yaml/pyyaml/blob/6.0.3/CHANGES)
- [Commits](yaml/pyyaml@6.0.2...6.0.3)

Updates `requests` from 2.33.0 to 2.34.2
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.33.0...v2.34.2)

Updates `torch` from 2.8.0 to 2.13.0
- [Release notes](https://github.com/pytorch/pytorch/releases)
- [Changelog](https://github.com/pytorch/pytorch/blob/main/RELEASE.md)
- [Commits](pytorch/pytorch@v2.8.0...v2.13.0)

Updates `tqdm` from 4.66.3 to 4.68.4
- [Release notes](https://github.com/tqdm/tqdm/releases)
- [Commits](tqdm/tqdm@v4.66.3...v4.68.4)

---
updated-dependencies:
- dependency-name: chess
  dependency-version: 1.11.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: release-validation-environment
- dependency-name: einops
  dependency-version: 0.8.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: release-validation-environment
- dependency-name: gdown
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: release-validation-environment
- dependency-name: numpy
  dependency-version: 2.5.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: release-validation-environment
- dependency-name: pandas
  dependency-version: 3.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: release-validation-environment
- dependency-name: pyyaml
  dependency-version: 6.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: release-validation-environment
- dependency-name: requests
  dependency-version: 2.34.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: release-validation-environment
- dependency-name: torch
  dependency-version: 2.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: release-validation-environment
- dependency-name: tqdm
  dependency-version: 4.68.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: release-validation-environment
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title Bump the release-validation-environment group in /maia2 with 9 updates Bump the release-validation-environment group across 1 directory with 9 updates Jul 15, 2026
@dependabot
dependabot Bot force-pushed the dependabot/pip/maia2/release-validation-environment-5f8e30bed3 branch from b754ff9 to 528267f Compare July 15, 2026 17:16
@lilv98

lilv98 commented Jul 15, 2026

Copy link
Copy Markdown
Collaborator

Thanks for the update. This grouped change fails the Python 3.10 and 3.11 CI jobs and replaces the exact release-validation dependency set, including the cross-backend PyTorch version. The applicable gdown and Requests security fixes are already on main in 0b8d7d9. Closing this bulk update; remaining upgrades should be evaluated individually.

@lilv98 lilv98 closed this Jul 15, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown
Author

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot
dependabot Bot deleted the dependabot/pip/maia2/release-validation-environment-5f8e30bed3 branch July 15, 2026 17:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant