Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the classical-ml group in /classical-ml with 3 updates #399

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 23, 2024

Bumps the classical-ml group in /classical-ml with 3 updates: daal4py, scikit-learn-intelex and pandas.

Updates daal4py from 2024.6.0 to 2024.7.0

Release notes

Sourced from daal4py's releases.

Intel® Extension for Scikit-learn* 2024.7.0

Intel® Extension for Scikit-learn* is happy to introduce 2024.7.0 release!

🚨 What's New

  • Introduced new Intel® Extension for Scikit-learn* functionality:
    • Sparse data support for LogisticRegression
    • Basic Statistic API improvement
    • Added random_state warning to SVM probability estimates
    • Unified daal4py and sklearnex builds

🪲 Bug Fixes

  • Fix issues with sklearn conformance for preview Ridge for 2024.6.0
  • Fix on preview ridge tests having too little error tolerance for coefficients assertions
  • Fix for Logistic Regression loss scaling
  • Fix to prevent support_usm_ndarray from changing queue if explicitly provided
  • Fix Multivariate Ridge Regression coefficients
  • Fix circular import in daal4py/sklearnex device_offloading
  • Align sklearnex BasicStatistics._onedal_fit with other algos

❌ Deprecation Notice

  • Removed Python 3.8 support

Acknowledgements

Thanks to everyone who helped us make 2024.7.0 release possible!

@​Alexsandruss, @​Alexandr-Solovev, @​Vika-F, @​icfaust, @​napetrov, @​maria-Petrova, @​ahuber21, @​ethanglaser, @​samir-nasibli, @​aepanchi, @​emmwalsh, @​olegkkruglov, @​razdoburdin, @​avolkov-intel, @​md-shafiul-alam

Full Changelog: uxlfoundation/scikit-learn-intelex@2024.6.0...2024.7.0

Commits

Updates scikit-learn-intelex from 2024.6.0 to 2024.7.0

Release notes

Sourced from scikit-learn-intelex's releases.

Intel® Extension for Scikit-learn* 2024.7.0

Intel® Extension for Scikit-learn* is happy to introduce 2024.7.0 release!

🚨 What's New

  • Introduced new Intel® Extension for Scikit-learn* functionality:
    • Sparse data support for LogisticRegression
    • Basic Statistic API improvement
    • Added random_state warning to SVM probability estimates
    • Unified daal4py and sklearnex builds

🪲 Bug Fixes

  • Fix issues with sklearn conformance for preview Ridge for 2024.6.0
  • Fix on preview ridge tests having too little error tolerance for coefficients assertions
  • Fix for Logistic Regression loss scaling
  • Fix to prevent support_usm_ndarray from changing queue if explicitly provided
  • Fix Multivariate Ridge Regression coefficients
  • Fix circular import in daal4py/sklearnex device_offloading
  • Align sklearnex BasicStatistics._onedal_fit with other algos

❌ Deprecation Notice

  • Removed Python 3.8 support

Acknowledgements

Thanks to everyone who helped us make 2024.7.0 release possible!

@​Alexsandruss, @​Alexandr-Solovev, @​Vika-F, @​icfaust, @​napetrov, @​maria-Petrova, @​ahuber21, @​ethanglaser, @​samir-nasibli, @​aepanchi, @​emmwalsh, @​olegkkruglov, @​razdoburdin, @​avolkov-intel, @​md-shafiul-alam

Full Changelog: uxlfoundation/scikit-learn-intelex@2024.6.0...2024.7.0

Commits

Updates pandas from 2.2.2 to 2.2.3

Release notes

Sourced from pandas's releases.

Pandas 2.2.3

We are pleased to announce the release of pandas 2.2.3. This release includes some new features, bug fixes, and performance improvements. We recommend that all users upgrade to this version.

See the full whatsnew for a list of all the changes. Pandas 2.2.3 supports Python 3.9 and higher.

The release will be available on the defaults and conda-forge channels:

conda install pandas

Or via PyPI:

python3 -m pip install --upgrade pandas

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the classical-ml group in /classical-ml with 3 updates: [daal4py](https://github.com/IntelPython/daal4py), [scikit-learn-intelex](https://github.com/intel/scikit-learn-intelex) and [pandas](https://github.com/pandas-dev/pandas).


Updates `daal4py` from 2024.6.0 to 2024.7.0
- [Release notes](https://github.com/IntelPython/daal4py/releases)
- [Commits](uxlfoundation/scikit-learn-intelex@2024.6.0...2024.7.0)

Updates `scikit-learn-intelex` from 2024.6.0 to 2024.7.0
- [Release notes](https://github.com/intel/scikit-learn-intelex/releases)
- [Commits](uxlfoundation/scikit-learn-intelex@2024.6.0...2024.7.0)

Updates `pandas` from 2.2.2 to 2.2.3
- [Release notes](https://github.com/pandas-dev/pandas/releases)
- [Commits](pandas-dev/pandas@v2.2.2...v2.2.3)

---
updated-dependencies:
- dependency-name: daal4py
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: classical-ml
- dependency-name: scikit-learn-intelex
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: classical-ml
- dependency-name: pandas
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: classical-ml
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Sep 23, 2024
@dependabot dependabot bot requested a review from sharvil10 as a code owner September 23, 2024 13:26
Copy link

github-actions bot commented Sep 23, 2024

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

PackageVersionScoreDetails
pip/daal4py 2024.7.0 🟢 6.6
Details
CheckScoreReason
Code-Review🟢 10all changesets reviewed
Maintained🟢 1030 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
License🟢 10license file detected
Signed-Releases⚠️ -1no releases found
Branch-Protection⚠️ -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Packaging⚠️ -1packaging workflow not detected
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
Security-Policy🟢 10security policy file detected
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts🟢 10no binaries found in the repo
Vulnerabilities🟢 100 existing vulnerabilities detected
Fuzzing⚠️ 0project is not fuzzed
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
pip/pandas 2.2.3 🟢 6.4
Details
CheckScoreReason
Binary-Artifacts🟢 10no binaries found in the repo
Branch-Protection⚠️ -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
CI-Tests🟢 1030 out of 30 merged PRs checked by a CI test -- score normalized to 10
CII-Best-Practices⚠️ 0no badge detected
Code-Review🟢 825 out of last 30 changesets reviewed before merge -- score normalized to 8
Contributors🟢 1047 different organizations found -- score normalized to 10
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Dependency-Update-Tool⚠️ 0no update tool detected
Fuzzing🟢 10project is fuzzed with [OSSFuzz]
License🟢 10license file detected
Maintained🟢 1030 commit(s) out of 30 and 21 issue activity out of 30 found in the last 90 days -- score normalized to 10
Packaging⚠️ -1no published package detected
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
SAST🟢 7SAST tool detected but not run on all commmits
Security-Policy🟢 10security policy file detected
Signed-Releases⚠️ 00 out of 5 artifacts are signed or have provenance
Token-Permissions⚠️ 0non read-only tokens detected in GitHub workflows
Vulnerabilities🟢 10no vulnerabilities detected
pip/scikit-learn-intelex 2024.7.0 🟢 6.6
Details
CheckScoreReason
Code-Review🟢 10all changesets reviewed
Maintained🟢 1030 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
License🟢 10license file detected
Signed-Releases⚠️ -1no releases found
Branch-Protection⚠️ -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Packaging⚠️ -1packaging workflow not detected
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
Security-Policy🟢 10security policy file detected
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts🟢 10no binaries found in the repo
Vulnerabilities🟢 100 existing vulnerabilities detected
Fuzzing⚠️ 0project is not fuzzed
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0

Scanned Manifest Files

classical-ml/requirements.txt
  • daal4py@2024.7.0
  • pandas@2.2.3
  • scikit-learn-intelex@2024.7.0
  • daal4py@2024.6.0
  • pandas@2.2.2
  • scikit-learn-intelex@2024.6.0

@github-advanced-security
Copy link

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

tylertitsworth added 2 commits September 23, 2024 09:19
Signed-off-by: tylertitsworth <tyler.titsworth@intel.com>
@tylertitsworth tylertitsworth merged commit 3e7ed97 into main Sep 23, 2024
5 checks passed
@tylertitsworth tylertitsworth deleted the dependabot/pip/classical-ml/classical-ml-d125d1d85f branch September 23, 2024 16:20
Copy link

Test-Group Test Status
classical-ml-tests-logs classical-ml-import-idp PASS
classical-ml-tests-logs classical-ml-import-pip PASS
classical-ml-tests-logs classical-ml-import-idp-jupyter PASS
classical-ml-tests-logs classical-ml-import-pip-jupyter PASS
classical-ml-tests-logs classical-ml-performance-idp PASS
classical-ml-tests-logs classical-ml-performance-pip PASS

tylertitsworth pushed a commit that referenced this pull request Sep 25, 2024
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: tylertitsworth <tyler.titsworth@intel.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: tylertitsworth <tyler.titsworth@intel.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant