Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the pip group across 5 directories with 6 updates #10

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): bump the pip group across 5 directories with 6 updates #10

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Jul 6, 2024
edited
Loading

Bumps the pip group with 1 update in the /backend/python/openvoice directory: gradio.
Bumps the pip group with 2 updates in the /examples/chainlit directory: llama-index and requests.
Bumps the pip group with 1 update in the /examples/functions directory: langchain.
Bumps the pip group with 2 updates in the /examples/langchain-chroma directory: llama-index and langchain.
Bumps the pip group with 4 updates in the /examples/langchain/langchainpy-localai-example directory: requests, langchain, certifi and urllib3.

Updates gradio from 3.48.0 to 4.37.1

Release notes

Sourced from gradio's releases.

@​gradio/lite@​4.37.1

Dependency updates

  • gradio@4.37.1

gradio@4.37.1

Fixes

gradio@4.36.1

Features

Fixes

@​gradio/lite@​4.36.1

Dependency updates

  • gradio@4.36.1
Changelog

Sourced from gradio's changelog.

4.37.1

Fixes

4.37.0

Features

Fixes

4.36.1

... (truncated)

Commits

Updates llama-index from 0.8.55 to 0.10.13

Release notes

Sourced from llama-index's releases.

v0.10.13

New Features

  • Added a llama-pack for KodaRetriever, for on-the-fly alpha tuning (#11311)
  • Added support for mistral-large (#11398)
  • Last token pooling mode for huggingface embeddings models like SFR-Embedding-Mistral (#11373)
  • Added fsspec support to SimpleDirectoryReader (#11303)

Bug Fixes / Nits

  • Fixed an issue with context window + prompt helper (#11379)
  • Moved OpenSearch vector store to BasePydanticVectorStore (#11400)
  • Fixed function calling in fireworks LLM (#11363)
  • Made cohere embedding types more automatic (#11288)
  • Improve function calling in react agent (#11280)
  • Fixed MockLLM imports (#11376)

v0.10.12

No release notes provided.

v0.10.11

No release notes provided.

v0.10.10

No release notes provided.

v0.10.8

No release notes provided.

v0.10.7

New Features

  • Added Self-Discover llamapack (#10951)

Bug Fixes / Nits

  • Fixed linting in CICD (#10945)
  • Fixed using remote graph stores (#10971)
  • Added missing LLM kwarg in NoText response synthesizer (#10971)
  • Fixed openai import in rankgpt (#10971)
  • Fixed resolving model name to string in openai embeddings (#10971)
  • Off by one error in sentence window node parser (#10971)

v0.10.6

[0.10.6] - 2024-02-17

First, apologies for missing the changelog the last few versions. Trying to figure out the best process with 400+ packages.

At some point, each package will have a dedicated changelog.

... (truncated)

Changelog

Sourced from llama-index's changelog.

[0.10.13] - 2024-02-26

New Features

  • Added a llama-pack for KodaRetriever, for on-the-fly alpha tuning (#11311)
  • Added support for mistral-large (#11398)
  • Last token pooling mode for huggingface embeddings models like SFR-Embedding-Mistral (#11373)
  • Added fsspec support to SimpleDirectoryReader (#11303)

Bug Fixes / Nits

  • Fixed an issue with context window + prompt helper (#11379)
  • Moved OpenSearch vector store to BasePydanticVectorStore (#11400)
  • Fixed function calling in fireworks LLM (#11363)
  • Made cohere embedding types more automatic (#11288)
  • Improve function calling in react agent (#11280)
  • Fixed MockLLM imports (#11376)

[0.10.12] - 2024-02-22

New Features

  • Added llama-index-postprocessor-colbert-rerank package (#11057)
  • MyMagicAI LLM (#11263)
  • MariaTalk LLM (#10925)
  • Add retries to github reader (#10980)
  • Added FireworksAI embedding and LLM modules (#10959)

Bug Fixes / Nits

  • Fixed string formatting in weaviate (#11294)
  • Fixed off-by-one error in semantic splitter (#11295)
  • Fixed download_llama_pack for multiple files (#11272)
  • Removed BUILD files from packages (#11267)
  • Loosened python version reqs for all packages (#11267)
  • Fixed args issue with chromadb (#11104)

[0.10.11] - 2024-02-21

Bug Fixes / Nits

  • Fixed multi-modal LLM for async acomplete (#11064)
  • Fixed issue with llamaindex-cli imports (#11068)

[0.10.10] - 2024-02-20

I'm still a bit wonky with our publishing process -- apologies. This is just a version bump to ensure the changes that were supposed to happen in 0.10.9 actually did get published. (AF)

... (truncated)

Commits
  • 6d642a0 Logan/release v0.10.13 (#11408)
  • 78a4c9e fix prompt helper init (#11379)
  • 52383c7 Update opensearch vectorstore to PydanticVectorStore class (#11400)
  • 4077fee Astra DB Vector store, package rename for naming consistency (#11056)
  • 65290f5 Alpha Tuning Llama Pack: KodaRetriever (#11311)
  • 70d4a5c Only firefunction is function calling (#11363)
  • 3a10235 Elastic Search retrieval : Bug Fix for Cases when No Relationships Detected (...
  • 0b13b8d Add support for mistral-large (#11398)
  • 1f48dd9 Astra DB clients identify themselves as coming through LlamaIndex usage (#11396)
  • 6024956 Last token pooling for Huggingface models like SFR-Embedding-Mistral (#11373)
  • Additional commits viewable in compare view

Updates requests from 2.31.0 to 2.32.2

Release notes

Sourced from requests's releases.

v2.32.2

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

v2.32.1

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

v2.32.0

2.32.0 (2024-05-20)

🐍 PYCON US 2024 EDITION 🐍

Security

  • Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (GHSA-9wx4-h78v-vm56)

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. The Response.text() and apparent_encoding APIs will default to utf-8 if neither library is present. (#6702)

Bugfixes

  • Fixed bug in length detection where emoji length was incorrectly calculated in the request content-length. (#6589)
  • Fixed deserialization bug in JSONDecodeError. (#6629)
  • Fixed bug where an extra leading / (path separator) could lead urllib3 to unnecessarily reparse the request URI. (#6644)

... (truncated)

Changelog

Sourced from requests's changelog.

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

2.32.0 (2024-05-20)

Security

  • Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (GHSA-9wx4-h78v-vm56)

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. The Response.text() and apparent_encoding APIs will default to utf-8 if neither library is present. (#6702)

Bugfixes

  • Fixed bug in length detection where emoji length was incorrectly calculated in the request content-length. (#6589)
  • Fixed deserialization bug in JSONDecodeError. (#6629)
  • Fixed bug where an extra leading / (path separator) could lead urllib3 to unnecessarily reparse the request URI. (#6644)

Deprecations

... (truncated)

Commits
  • 88dce9d v2.32.2
  • c98e4d1 Merge pull request #6710 from nateprewitt/api_rename
  • 92075b3 Add deprecation warning
  • aa1461b Move _get_connection to get_connection_with_tls_context
  • 970e8ce v2.32.1
  • d6ebc4a v2.32.0
  • 9a40d12 Avoid reloading root certificates to improve concurrent performance (#6667)
  • 0c030f7 Merge pull request #6702 from nateprewitt/no_char_detection
  • 555b870 Allow character detection dependencies to be optional in post-packaging steps
  • d6dded3 Merge pull request #6700 from franekmagiera/update-redirect-to-invalid-uri-test
  • Additional commits viewable in compare view

Updates langchain from 0.1.0 to 0.2.3

Release notes

Sourced from langchain's releases.

langchain==0.2.3

Release langchain==0.2.3

Changes since langchain==0.2.2

langchain[patch]: Release 0.2.3 (#22644) multiple: get rid of pyproject extras (#22581) langchain[minor]: add universal init_model (#22039)

langchain-together==0.1.3

Release langchain-together==0.1.3

Changes since langchain-together==0.1.2

together: bump langchain-core (#22616) together[patch]: Release 0.1.3 (#22615) together, upstage: bump minimum langchain-openai version (#22505) infra: rm unused # noqa violations (#22049) partners: bump core in packages implementing ls_params (#21868) core, standard tests, partner packages: add test for model params (#21677)

langchain-community==0.2.3

Release langchain-community==0.2.3

Changes since langchain-community==0.2.2

community[patch]: Release 0.2.3 (#22562) community[patch]: improve test setup to accurately test filtering of labels in neo4j (#22531) community[minor]: Add support for metadata indexing policy in Cassandra vector store (#22548) community[minor]: add user agent for web scraping loaders (#22480) community[minor]: Add native async support to SQLChatMessageHistory (#22065) community[minor]: Improve InMemoryVectorStore with ability to persist to disk and filter on metadata. (#22186) community[patch]: add detailed paragraph and example for BaichuanTextEmbeddings (#22031) community[minor]: Added filter search for LanceDB (#22461) community: fix huggingface deprecations (#22522) community[minor]: Vectara Integration Update - Streaming, FCS, Chat, updates to documentation and example notebooks (#21334)

langchain-nomic==0.1.2

Release langchain-nomic==0.1.2

Changes since langchain-nomic==0.1.1

nomic[patch]: Release 0.1.2 (#22561) embeddings: nomic embed vision (#22482)

langchain-mongodb==0.1.6

Release langchain-mongodb==0.1.6

Changes since langchain-mongodb==0.1.5

mongodb[patch]: Release 0.1.6 (#22501) community, milvus, pinecone, qdrant, mongo: Broadcast operation failure while using simsimd beyond v3.7.7 (#22271) infra: rm unused # noqa violations (#22049)

langchain-milvus==0.1.1

... (truncated)

Commits

Updates llama-index from 0.9.36 to 0.10.13

Release notes

Sourced from llama-index's releases.

v0.10.13

New Features

  • Added a llama-pack for KodaRetriever, for on-the-fly alpha tuning (#11311)
  • Added support for mistral-large (#11398)
  • Last token pooling mode for huggingface embeddings models like SFR-Embedding-Mistral (#11373)
  • Added fsspec support to SimpleDirectoryReader (#11303)

Bug Fixes / Nits

  • Fixed an issue with context window + prompt helper (#11379)
  • Moved OpenSearch vector store to BasePydanticVectorStore (#11400)
  • Fixed function calling in fireworks LLM (#11363)
  • Made cohere embedding types more automatic (#11288)
  • Improve function calling in react agent (#11280)
  • Fixed MockLLM imports (#11376)

v0.10.12

No release notes provided.

v0.10.11

No release notes provided.

v0.10.10

No release notes provided.

v0.10.8

No release notes provided.

v0.10.7

New Features

  • Added Self-Discover llamapack (#10951)

Bug Fixes / Nits

  • Fixed linting in CICD (#10945)
  • Fixed using remote graph stores (#10971)
  • Added missing LLM kwarg in NoText response synthesizer (#10971)
  • Fixed openai import in rankgpt (#10971)
  • Fixed resolving model name to string in openai embeddings (#10971)
  • Off by one error in sentence window node parser (#10971)

v0.10.6

[0.10.6] - 2024-02-17

First, apologies for missing the changelog the last few versions. Trying to figure out the best process with 400+ packages.

At some point, each package will have a dedicated changelog.

... (truncated)

Changelog

Sourced from llama-index's changelog.

[0.10.13] - 2024-02-26

New Features

  • Added a llama-pack for KodaRetriever, for on-the-fly alpha tuning (#11311)
  • Added support for mistral-large (#11398)
  • Last token pooling mode for huggingface embeddings models like SFR-Embedding-Mistral (#11373)
  • Added fsspec support to SimpleDirectoryReader (#11303)

Bug Fixes / Nits

  • Fixed an issue with context window + prompt helper (#11379)
  • Moved OpenSearch vector store to BasePydanticVectorStore (#11400)
  • Fixed function calling in fireworks LLM (#11363)
  • Made cohere embedding types more automatic (#11288)
  • Improve function calling in react agent (#11280)
  • Fixed MockLLM imports (#11376)

[0.10.12] - 2024-02-22

New Features

  • Added llama-index-postprocessor-colbert-rerank package (#11057)
  • MyMagicAI LLM (#11263)
  • MariaTalk LLM (#10925)
  • Add retries to github reader (#10980)
  • Added FireworksAI embedding and LLM modules (#10959)

Bug Fixes / Nits

  • Fixed string formatting in weaviate (#11294)
  • Fixed off-by-one error in semantic splitter (#11295)
  • Fixed download_llama_pack for multiple files (#11272)
  • Removed BUILD files from packages (#11267)
  • Loosened python version reqs for all packages (#11267)
  • Fixed args issue with chromadb (#11104)

[0.10.11] - 2024-02-21

Bug Fixes / Nits

  • Fixed multi-modal LLM for async acomplete (#11064)
  • Fixed issue with llamaindex-cli imports (#11068)

[0.10.10] - 2024-02-20

I'm still a bit wonky with our publishing process -- apologies. This is just a version bump to ensure the changes that were supposed to happen in 0.10.9 actually did get published. (AF)

... (truncated)

Commits
  • 6d642a0 Logan/release v0.10.13 (#11408)
  • 78a4c9e fix prompt helper init (#11379)
  • 52383c7 Update opensearch vectorstore to PydanticVectorStore class (#11400)
  • 4077fee Astra DB Vector store, package rename for naming consistency (#11056)
  • 65290f5 Alpha Tuning Llama Pack: KodaRetriever (#11311)
  • 70d4a5c Only firefunction is function calling (#11363)
  • 3a10235 Elastic Search retrieval : Bug Fix for Cases when No Relationships Detected (...
  • 0b13b8d Add support for mistral-large (#11398)
  • 1f48dd9 Astra DB clients identify themselves as coming through LlamaIndex usage (#11396)
  • 6024956 Last token pooling for Huggingface models like SFR-Embedding-Mistral (#11373)
  • Additional commits viewable in compare view

Updates langchain from 0.1.0 to 0.2.3

Release notes

Sourced from langchain's releases.

langchain==0.2.3

Release langchain==0.2.3

Changes since langchain==0.2.2

langchain[patch]: Release 0.2.3 (#22644) multiple: get rid of pyproject extras (#22581) langchain[minor]: add universal init_model (#22039)

langchain-together==0.1.3

Release langchain-together==0.1.3

Changes since langchain-together==0.1.2

together: bump langchain-core (#22616) together[patch]: Release 0.1.3 (#22615) together, upstage: bump minimum langchain-openai version (#22505) infra: rm unused # noqa violations (#22049) partners: bump core in packages implementing ls_params (#21868) core, standard tests, partner packages: add test for model params (#21677)

langchain-community==0.2.3

Release langchain-community==0.2.3

Changes since langchain-community==0.2.2

community[patch]: Release 0.2.3 (#22562) community[patch]: improve test setup to accurately test filtering of labels in neo4j (#22531) community[minor]: Add support for metadata indexing policy in Cassandra vector store (#22548) community[minor]: add user agent for web scraping loaders (#22480) community[minor]: Add native async support to SQLChatMessageHistory (#22065) community[minor]: Improve InMemoryVectorStore with ability to persist to disk and filter on metadata. (#22186) community[patch]: add detailed paragraph and example for BaichuanTextEmbeddings (#22031) community[minor]: Added filter search for LanceDB (#22461) community: fix huggingface deprecations (#22522) community[minor]: Vectara Integration Update - Streaming, FCS, Chat, updates to documentation and example notebooks (#21334)

langchain-nomic==0.1.2

Release langchain-nomic==0.1.2

Changes since langchain-nomic==0.1.1

nomic[patch]: Release 0.1.2 (#22561) embeddings: nomic embed vision (#22482)

langchain-mongodb==0.1.6

Release langchain-mongodb==0.1.6

Changes since langchain-mongodb==0.1.5

mongodb[patch]: Release 0.1.6 (#22501) community, milvus, pinecone, qdrant, mongo: Broadcast operation failure while using simsimd beyond v3.7.7 (#22271) infra: rm unused # noqa violations (#22049)

langchain-milvus==0.1.1

... (truncated)

Commits

Updates requests from 2.31.0 to 2.32.2

Release notes

Sourced from requests's releases.

v2.32.2

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

v2.32.1

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

v2.32.0

2.32.0 (2024-05-20)

🐍 PYCON US 2024 EDITION 🐍

Security

  • Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (GHSA-9wx4-h78v-vm56)

Improvements

  • verify=True now reuses a global SSLContext which should improve request time variance between first and subsequent requests. It should also minimize certificate load time on Windows systems when using a Python version built with OpenSSL 3.x. (#6667)
  • Requests now supports optional use of character detection (chardet or charset_normalizer) when repackaged or vendored. This enables pip and other projects to minimize their vendoring surface area. The Response.text() and apparent_encoding APIs will default to utf-8 if neither library is present. (#6702)

Bugfixes

  • Fixed bug in length detection where emoji length was incorrectly calculated in the request content-length. (#6589)
  • Fixed deserialization bug in JSONDecodeError. (#6629)
  • Fixed bug where an extra leading / (path separator) could lead urllib3 to unnecessarily reparse the request URI. (#6644)

... (truncated)

Changelog

Sourced from requests's changelog.

2.32.2 (2024-05-21)

Deprecations

  • To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

    A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

2.32.1 (2024-05-20)

Bugfixes

  • Add missing test certs to the sdist distributed on PyPI.

2.32.0 (2024-05-20)

Security

  • Fixed an issue where setting verify=False on the first request from a Session will cause subsequent requests to the same origin to also ignore cert verification, regardless of the value of verify. (

@dependabot
build(deps): bump the pip group across 5 directories with 6 updates
8e6fe80 
Bumps the pip group with 1 update in the /backend/python/openvoice directory: [gradio](https://github.com/gradio-app/gradio).
Bumps the pip group with 2 updates in the /examples/chainlit directory: [llama-index](https://github.com/run-llama/llama_index) and [requests](https://github.com/psf/requests).
Bumps the pip group with 1 update in the /examples/functions directory: [langchain](https://github.com/langchain-ai/langchain).
Bumps the pip group with 2 updates in the /examples/langchain-chroma directory: [llama-index](https://github.com/run-llama/llama_index) and [langchain](https://github.com/langchain-ai/langchain).
Bumps the pip group with 4 updates in the /examples/langchain/langchainpy-localai-example directory: [requests](https://github.com/psf/requests), [langchain](https://github.com/langchain-ai/langchain), [certifi](https://github.com/certifi/python-certifi) and [urllib3](https://github.com/urllib3/urllib3).


Updates `gradio` from 3.48.0 to 4.37.1
- [Release notes](https://github.com/gradio-app/gradio/releases)
- [Changelog](https://github.com/gradio-app/gradio/blob/main/CHANGELOG.md)
- [Commits](https://github.com/gradio-app/gradio/compare/gradio@3.48.0...gradio@4.37.1)

Updates `llama-index` from 0.8.55 to 0.10.13
- [Release notes](https://github.com/run-llama/llama_index/releases)
- [Changelog](https://github.com/run-llama/llama_index/blob/main/CHANGELOG.md)
- [Commits](run-llama/llama_index@v0.8.55...v0.10.13)

Updates `requests` from 2.31.0 to 2.32.2
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.31.0...v2.32.2)

Updates `langchain` from 0.1.0 to 0.2.3
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-exa==0.1.0...langchain==0.2.3)

Updates `llama-index` from 0.9.36 to 0.10.13
- [Release notes](https://github.com/run-llama/llama_index/releases)
- [Changelog](https://github.com/run-llama/llama_index/blob/main/CHANGELOG.md)
- [Commits](run-llama/llama_index@v0.8.55...v0.10.13)

Updates `langchain` from 0.1.0 to 0.2.3
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-exa==0.1.0...langchain==0.2.3)

Updates `requests` from 2.31.0 to 2.32.2
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.31.0...v2.32.2)

Updates `langchain` from 0.1.0 to 0.2.3
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-exa==0.1.0...langchain==0.2.3)

Updates `certifi` from 2023.7.22 to 2024.7.4
- [Commits](certifi/python-certifi@2023.07.22...2024.07.04)

Updates `urllib3` from 1.26.18 to 1.26.19
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](urllib3/urllib3@1.26.18...1.26.19)

---
updated-dependencies:
- dependency-name: gradio
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: llama-index
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: requests
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: langchain
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: llama-index
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: langchain
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: requests
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: langchain
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: certifi
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: urllib3
  dependency-type: direct:production
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jul 6, 2024
@socket-security Socket Security
Copy link

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
pypi/gradio@4.37.1 environment, eval, filesystem, network, shell 0 71.1 MB aabid93, aliabd, aliabid94, ...1 more
pypi/langchain@0.2.3 environment, eval, filesystem, network 0 2.32 MB hwchase17
pypi/llama-index@0.10.13 None 0 21.9 kB jerryjliu, simonsdsuo
pypi/pydantic@1.10.13 environment, eval, filesystem, unsafe 0 9.72 MB samuelcolvin
pypi/requests@2.32.2 environment, eval, filesystem, network, shell, unsafe 0 473 kB Lukasa, graffatcolmingov, nateprewitt

🚮 Removed packages: pypi/certifi@2023.7.22, pypi/certifi@2023.7.22, pypi/gradio@3.48.0, pypi/gradio@3.48.0, pypi/langchain@0.1.0, pypi/langchain@0.1.0, pypi/llama-index@0.8.55, pypi/llama-index@0.8.55, pypi/llama-index@0.9.36, pypi/llama-index@0.9.36, pypi/requests@2.31.0, pypi/requests@2.31.0

View full report↗︎

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants