build(deps): bump the dependencies group across 1 directory with 8 updates

[dependabot]

Bumps the dependencies group with 8 updates in the / directory:

Package	From	To
fastapi	0.111.1	0.112.0
pydantic-settings	2.3.4	2.4.0
uvicorn	0.30.3	0.30.6
transformers	4.43.3	4.44.0
protobuf	5.27.2	5.27.3
redis	5.0.7	5.0.8
pyright	1.1.373	1.1.376
ruff	0.5.5	0.5.7

Updates fastapi from 0.111.1 to 0.112.0

Release notes

Sourced from fastapi's releases.

0.112.0

Breaking Changes

• ♻️ Add support for pip install "fastapi[standard]" with standard dependencies and python -m fastapi. PR #11935 by @​tiangolo.

Summary

Install with:

pip install "fastapi[standard]"

Other Changes

• This adds support for calling the CLI as:

python -m fastapi

• And it upgrades fastapi-cli[standard] >=0.0.5.

Technical Details

Before this, fastapi would include the standard dependencies, with Uvicorn and the fastapi-cli, etc.

And fastapi-slim would not include those standard dependencies.

Now fastapi doesn't include those standard dependencies unless you install with pip install "fastapi[standard]".

Before, you would install pip install fastapi, now you should include the standard optional dependencies (unless you want to exclude one of those): pip install "fastapi[standard]".

This change is because having the standard optional dependencies installed by default was being inconvenient to several users, and having to install instead fastapi-slim was not being a feasible solution.

Discussed here: #11522 and here: #11525

Docs

• ✏️ Fix typos in docs. PR #11926 by @​jianghuyiyuan.
• 📝 Tweak management docs. PR #11918 by @​tiangolo.
• 🚚 Rename GitHub links from tiangolo/fastapi to fastapi/fastapi. PR #11913 by @​tiangolo.
• 📝 Add docs about FastAPI team and project management. PR #11908 by @​tiangolo.
• 📝 Re-structure docs main menu. PR #11904 by @​tiangolo.
• 📝 Update Speakeasy URL. PR #11871 by @​ndimares.

Translations

• 🌐 Update Portuguese translation for docs/pt/docs/alternatives.md. PR #11931 by @​ceb10n.
• 🌐 Add Russian translation for docs/ru/docs/tutorial/dependencies/sub-dependencies.md. PR #10515 by @​AlertRED.

... (truncated)

Commits

• b2e2338 🔖 Release version 0.112.0
• 003d454 📝 Update release notes
• 450bff6 📝 Update release notes
• a25c92c ♻️ Add support for pip install "fastapi[standard]" with standard dependenci...
• 3990a0a 📝 Update release notes
• 1f7dcc5 🌐 Update Portuguese translation for docs/pt/docs/alternatives.md (#11931)
• 12a4476 📝 Update release notes
• efb4a07 🔧 Update sponsors: add liblab (#11934)
• 9d41d6e 📝 Update release notes
• 643a87c 👷 Update GitHub Action label-approved permissions (#11933)
• Additional commits viewable in compare view

Updates pydantic-settings from 2.3.4 to 2.4.0

Release notes

Sourced from pydantic-settings's releases.

v2.4.0

What's Changed

• Fix regex flags accidentally passed as count by @​musicinmybrain in pydantic/pydantic-settings#328
• Deprecate read_env_file and move it to DotEnvSettingsSource by @​WarpedPixel in pydantic/pydantic-settings#318
• Fix a bug when loading empty yaml file by @​hramezani in pydantic/pydantic-settings#330
• feat: Enable access to the current state in settings sources by @​VictorColomb in pydantic/pydantic-settings#326
• Add support for short options. by @​kschwab in pydantic/pydantic-settings#339
• Add Azure Key Vault settings source by @​AndreuCodina in pydantic/pydantic-settings#272
• Add cli_exit_on_error config option by @​kschwab in pydantic/pydantic-settings#340

New Contributors

• @​musicinmybrain made their first contribution in pydantic/pydantic-settings#328
• @​WarpedPixel made their first contribution in pydantic/pydantic-settings#318
• @​VictorColomb made their first contribution in pydantic/pydantic-settings#326
• @​AndreuCodina made their first contribution in pydantic/pydantic-settings#272

Full Changelog: pydantic/pydantic-settings@v2.3.4...v2.4.0

Commits

• 5cc686a Prepare release 2.4.0 (#355)
• 4840d69 Add cli_exit_on_error config option (#340)
• bcbdd2a Add Azure Key Vault settings source (#272)
• 6ffd6bd Add support for short options. (#339)
• 8b8803d feat: Enable access to the current state in settings sources (#326)
• 229319c Fix a bug when loading empty yaml file (#330)
• d6db0f9 Deprecate read_env_file and move it to DotEnvSettingsSource (#318)
• fa17c0a Fix regex flags accidentally passed as count (#328)
• See full diff in compare view

Updates uvicorn from 0.30.3 to 0.30.6

Release notes

Sourced from uvicorn's releases.

Version 0.30.6

Fixed

• Don't warn when upgrade is not WebSocket and depedencies are installed (#2360)

---

Full Changelog: encode/uvicorn@0.30.5...0.30.6

Version 0.30.5

Fixed

• Don't close connection before receiving body on H11 (#2408)

---

Full Changelog: encode/uvicorn@0.30.4...0.30.5

Version 0.30.4

Fixed

• Close connection when h11 sets client state to MUST_CLOSE #2375

---

Full Changelog: encode/uvicorn@0.30.3...0.30.4

Changelog

Sourced from uvicorn's changelog.

0.30.6 (2024-08-13)

Fixed

• Don't warn when upgrade is not WebSocket and depedencies are installed (#2360)

0.30.5 (2024-08-02)

Fixed

• Don't close connection before receiving body on H11 (#2408)

0.30.4 (2024-07-31)

Fixed

• Close connection when h11 sets client state to MUST_CLOSE (#2375)

Commits

• 7dc027d Version 0.30.6 (#2428)
• 587a1cc fix: upgrade is not websocket and dependencies are installed, should not warn...
• cee31a6 test(signal): add sleep to ensure shutdown completion (#2427)
• eba64ef ci: timeout for test suite runs to 30 minutes (#2426)
• 0f513d2 Remove signal testing order dependency (#2382)
• ff54b02 Version 0.30.5 (#2409)
• 2f25107 Fix 0.30.4 issue with connection close header (#2408)
• 8efa41c Version 0.30.4 (#2403)
• b492349 Add pragma: full coverage to Process.is_alive (#2402)
• ce999aa close request connection if h11 sets client state as MUST_CLOSE (#2375)
• Additional commits viewable in compare view

Updates transformers from 4.43.3 to 4.44.0

Release notes

Sourced from transformers's releases.

Release v4.44.0: End to end compile generation!!! Gemma2 (with assisted decoding), Codestral (Mistral for code), Nemotron, Efficient SFT training, CPU Offloaded KVCache, torch export for static cache

This release comes a bit early in our cycle because we wanted to ship important and requested models along with improved performances for everyone!

All of these are included with examples in the awesome https://github.com/huggingface/local-gemma repository! 🎈 We tried to share examples of what is now possible with all the shipped features! Kudos to @​gante, @​sanchit-gandhi and @​xenova

💥 End-to-end generation compile

Generate: end-to-end compilation #30788 by @​gante: model.generate now supports compiling! There are a few limitations, but here is a small snippet:

from transformers import AutoModelForCausalLM, AutoTokenizer
import torch
import copy
model = AutoModelForCausalLM.from_pretrained(
"meta-llama/Meta-Llama-3.1-8B", torch_dtype=torch.bfloat16, device_map="auto"
)
tokenizer = AutoTokenizer.from_pretrained("meta-llama/Meta-Llama-3.1-8B")
compile generate
compiled_generate = torch.compile(model.generate, fullgraph=True, mode="reduce-overhead")
compiled generate does NOT accept parameterization except a) model inputs b) a generation config
generation_config = copy.deepcopy(model.generation_config)
generation_config.pad_token_id = model.config.eos_token_id
model_inputs = tokenizer(["Write a poem about the market crashing in summer"], return_tensors="pt")
model_inputs = model_inputs.to(model.device)
output_compiled = compiled_generate(**model_inputs, generation_config=generation_config)
print(output_compiled)

⚡ 3 to 5x compile speedup (compilation time 👀 not runtime)

• 3-5x faster torch.compile forward compilation for autoregressive decoder models #32227* by @​fxmarty . As documented on the PR, this makes the whole generation a lot faster when you re-use the cache! You can see this when you run model.forward = torch.compile(model.forward, mode="reduce-overhead", fullgraph=True)

🪶 Offloaded KV cache: offload the cache to CPU when you are GPU poooooor 🚀

• Offloaded KV Cache #31325* by @​n17s : you just have to set cache_implementation="offloaded" when calling from_pretrained or using this:

from transformers import GenerationConfig
gen_config = GenerationConfig(cache_implementation="offloaded", # other generation options such as num_beams=4,num_beam_groups=2,num_return_sequences=4,diversity_penalty=1.0,max_new_tokens=50,early_stopping=True)
outputs = model.generate(inputs["input_ids"],generation_config=gen_config)

📦 Torch export for static cache

pytorch team gave us a great gift: you can now use torch.export directly compatible with Executorch! Find examples here.

• Make static cache compatible with torch.export #32168 by @​guangy10

... (truncated)

Commits

• 984bc11 Revert "fixes to properly shard FSDP across cpu and meta for cpu_effcient_loa...
• af61272 is_torchdynamo_compiling -- cast a wide exception net (#32476)
• 3e93524 release v4.44.0
• 80b90e7 Add codestral mamba2 (#32080)
• 3d8bd11 Generate: fix end to end compilation (#32465)
• 6a03942 Add Nemotron HF Support (#31699)
• 36fd35e Dependencies: fix typo (#32389)
• 438d06c Fix get large model config for Switch Transformer encoder only tester (#32438)
• fb66ef8 Update kwargs validation for preprocess with decorator (#32024)
• e85d863 add the missing flash attention test marker (#32419)
• Additional commits viewable in compare view

Updates protobuf from 5.27.2 to 5.27.3

Commits

• 7cc670c Updating version.json and repo version numbers to: 27.3
• 67d7298 Merge pull request #17617 from protocolbuffers/cp-utf8-ascii
• e20cb7a Remove /utf-8 flag added in #14197
• c9839cb Merge pull request #17473 from protocolbuffers/cp-revert-hack
• 8a579c1 Downgrade CMake to 3.29 to workaround Abseil issue.
• ba3e7d7 Revert workaround for std::mutex issues on github windows runners.
• 861be78 Merge pull request #17331 from protocolbuffers/cp-cp
• c1ec82f Merge pull request #17232 from simonberger/bugfix/php-ext-persistent-global-c...
• aec8a76 Upgrade macos-11 tests to macos-12
• 4e3b4f0 Use explicit names of our large runners
• Additional commits viewable in compare view

Updates redis from 5.0.7 to 5.0.8

Release notes

Sourced from redis's releases.

5.0.8

Changes

• Resolve some docs warnings (#3322)
• Add missing type hints for retry.py (#3250)

🔥 Breaking Changes

• Timeseries insertion filters for close samples (#3228)

🚀 New Features

• Hash field expiration commands (#3218)
• Support the MAXAGE option for CLIENT KILL (#3187)
• Support NOVALUES parameter for HSCAN (#3157)
• Document XREAD of last message (+) (#3187)
• Support missing/empty values in search (#3231)
• Timeseries insertion filters for close samples (#3228)

🧰 Maintenance

• Add extra tests for GEO search (#3244)
• Test special characters escaping in search (#3276)

🐛 Bug Fixes

• Decode search results at field level (#3309)

Commits

• 6a2a636 Decode search results at field level (#3309)
• e7ef54a Fix bug: client side caching causes unexpected disconnections (async version)...
• 0cd0c5d Format connection errors in the same way everywhere (#3305)
• 6fedfef Prepare for Redis 7.4 RC2 (#3303)
• ed1680f Add details to the asyncio connection error message (#3211)
• 511fda0 Add missing type hints for retry.py (#3250)
• c1a6ff7 Bump rojopolis/spellcheck-github-actions from 0.37.0 to 0.38.0 (#3301)
• 338cbfd Re-enable Graph tests (#3287)
• 532bc02 Do not restrict pytest dependencies versions (#3286)
• b6a0f96 Add CODECOV token to CI (#3285)
• Additional commits viewable in compare view

Updates pyright from 1.1.373 to 1.1.376

Commits

• ae9a6c1 Pyright NPM Package update to 1.1.376 (#288)
• ec0e68a [pyright updated to 1.1.375] Update Version (#287)
• c35c2ee [pyright updated to 1.1.374] Update Version (#286)
• See full diff in compare view

Updates ruff from 0.5.5 to 0.5.7

Release notes

Sourced from ruff's releases.

0.5.7

Release Notes

Preview features

• [flake8-comprehensions] Account for list and set comprehensions in unnecessary-literal-within-tuple-call (C409) (#12657)
• [flake8-pyi] Add autofix for future-annotations-in-stub (PYI044) (#12676)
• [flake8-return] Avoid syntax error when auto-fixing RET505 with mixed indentation (space and tabs) (#12740)
• [pydoclint] Add docstring-missing-yields (DOC402) and docstring-extraneous-yields (DOC403) (#12538)
• [pydoclint] Avoid DOC201 if docstring begins with "Return", "Returns", "Yield", or "Yields" (#12675)
• [pydoclint] Deduplicate collected exceptions after traversing function bodies (DOC501) (#12642)
• [pydoclint] Ignore DOC errors for stub functions (#12651)
• [pydoclint] Teach rules to understand reraised exceptions as being explicitly raised (DOC501, DOC502) (#12639)
• [ruff] Implement incorrectly-parenthesized-tuple-in-subscript (RUF031) (#12480)
• [ruff] Mark RUF023 fix as unsafe if __slots__ is not a set and the binding is used elsewhere (#12692)

Rule changes

• [refurb] Add autofix for implicit-cwd (FURB177) (#12708)
• [ruff] Add autofix for zip-instead-of-pairwise (RUF007) (#12663)
• [tryceratops] Add BaseException to raise-vanilla-class rule (TRY002) (#12620)

Server

• Ignore non-file workspace URL; Ruff will display a warning notification in this case (#12725)

CLI

• Fix cache invalidation for nested pyproject.toml files (#12727)

Bug fixes

• [flake8-async] Fix false positives with multiple async with items (ASYNC100) (#12643)
• [flake8-bandit] Avoid false-positives for list concatenations in SQL construction (S608) (#12720)
• [flake8-bugbear] Treat return as equivalent to break (B909) (#12646)
• [flake8-comprehensions] Set comprehensions not a violation for sum in unnecessary-comprehension-in-call (C419) (#12691)
• [flake8-simplify] Parenthesize conditions based on precedence when merging if arms (SIM114) (#12737)
• [pydoclint] Try both 'Raises' section styles when convention is unspecified (DOC501) (#12649)

Contributors

• @​AlexWaygood
• @​DavideRagazzon
• @​InSyncWithFoo
• @​MichaReiser
• @​augustelalande
• @​bluetech
• @​carljm
• @​cclauss
• @​charliermarsh
• @​dhruvmanila

... (truncated)

Changelog

Sourced from ruff's changelog.

0.5.7

Preview features

• [flake8-comprehensions] Account for list and set comprehensions in unnecessary-literal-within-tuple-call (C409) (#12657)
• [flake8-pyi] Add autofix for future-annotations-in-stub (PYI044) (#12676)
• [flake8-return] Avoid syntax error when auto-fixing RET505 with mixed indentation (space and tabs) (#12740)
• [pydoclint] Add docstring-missing-yields (DOC402) and docstring-extraneous-yields (DOC403) (#12538)
• [pydoclint] Avoid DOC201 if docstring begins with "Return", "Returns", "Yield", or "Yields" (#12675)
• [pydoclint] Deduplicate collected exceptions after traversing function bodies (DOC501) (#12642)
• [pydoclint] Ignore DOC errors for stub functions (#12651)
• [pydoclint] Teach rules to understand reraised exceptions as being explicitly raised (DOC501, DOC502) (#12639)
• [ruff] Implement incorrectly-parenthesized-tuple-in-subscript (RUF031) (#12480)
• [ruff] Mark RUF023 fix as unsafe if __slots__ is not a set and the binding is used elsewhere (#12692)

Rule changes

• [refurb] Add autofix for implicit-cwd (FURB177) (#12708)
• [ruff] Add autofix for zip-instead-of-pairwise (RUF007) (#12663)
• [tryceratops] Add BaseException to raise-vanilla-class rule (TRY002) (#12620)

Server

• Ignore non-file workspace URL; Ruff will display a warning notification in this case (#12725)

CLI

• Fix cache invalidation for nested pyproject.toml files (#12727)

Bug fixes

• [flake8-async] Fix false positives with multiple async with items (ASYNC100) (#12643)
• [flake8-bandit] Avoid false-positives for list concatenations in SQL construction (S608) (#12720)
• [flake8-bugbear] Treat return as equivalent to break (B909) (#12646)
• [flake8-comprehensions] Set comprehensions not a violation for sum in unnecessary-comprehension-in-call (C419) (#12691)
• [flake8-simplify] Parenthesize conditions based on precedence when merging if arms (SIM114) (#12737)
• [pydoclint] Try both 'Raises' section styles when convention is unspecified (DOC501) (#12649)

0.5.6

Ruff 0.5.6 automatically enables linting and formatting of notebooks in preview mode. You can opt-out of this behavior by adding *.ipynb to the extend-exclude setting.

[tool.ruff]
extend-exclude = ["*.ipynb"]

Preview features

... (truncated)

Commits

• 221ea66 Bump version to 0.5.7 (#12756)
• d28c5af [red-knot] Remove mentions of Ruff from the CLI help (#12752)
• f1de08c [red-knot] Merge the semantic and module-resolver crates (#12751)
• 33e9a6a SIM110: any() is ~3x slower than the code it replaces (#12746)
• f577e03 [ruff] Ignore empty tuples for `incorrectly-parenthesized-tuple-in-subscript ...
• f537335 Remove all useEffect usages (#12659)
• 2daa914 Gracefully handle errors in CLI (#12747)
• 6d9205e [ruff_linter] - Use LibCST in adjust_indentation for mixed whitespace (#1...
• df7345e Exit with an error if there are check failures (#12735)
• dc6aafe Setup tracing and document tracing usage (#12730)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.