Bump the classical-ml group in /classical-ml with 3 updates

[dependabot]

Bumps the classical-ml group in /classical-ml with 3 updates: daal4py, scikit-learn-intelex and pandas.

Updates daal4py from 2024.6.0 to 2024.7.0

Release notes

Sourced from daal4py's releases.

Intel® Extension for Scikit-learn* 2024.7.0

Intel® Extension for Scikit-learn* is happy to introduce 2024.7.0 release!

🚨 What's New

• Introduced new Intel® Extension for Scikit-learn* functionality:
  • Sparse data support for LogisticRegression
  • Basic Statistic API improvement
  • Added random_state warning to SVM probability estimates
  • Unified daal4py and sklearnex builds

🪲 Bug Fixes

• Fix issues with sklearn conformance for preview Ridge for 2024.6.0
• Fix on preview ridge tests having too little error tolerance for coefficients assertions
• Fix for Logistic Regression loss scaling
• Fix to prevent support_usm_ndarray from changing queue if explicitly provided
• Fix Multivariate Ridge Regression coefficients
• Fix circular import in daal4py/sklearnex device_offloading
• Align sklearnex BasicStatistics._onedal_fit with other algos

❌ Deprecation Notice

• Removed Python 3.8 support

Acknowledgements

Thanks to everyone who helped us make 2024.7.0 release possible!

@​Alexsandruss, @​Alexandr-Solovev, @​Vika-F, @​icfaust, @​napetrov, @​maria-Petrova, @​ahuber21, @​ethanglaser, @​samir-nasibli, @​aepanchi, @​emmwalsh, @​olegkkruglov, @​razdoburdin, @​avolkov-intel, @​md-shafiul-alam

Full Changelog: uxlfoundation/scikit-learn-intelex@2024.6.0...2024.7.0

Commits

• a205592 FIX: incremental estimators tests (#1998) (#2021)
• 84666fa FIX: fixing spmd tests utilities for dpctl inputs (#1999) (#2020)
• ae3c3a5 Logistic Regression CI fix (#2013) (#2017)
• dd305dc Add sparse data support for LogisticRegression (#1985) (#2010)
• c04e50d Update sklearn versions badge in README (#1997)
• 9606c69 Update version.py (#1994)
• a2b89b4 CI: remove SVM+neighbors GPU deselections (#1991)
• d7bd00b CI: mpi-pytest follow-up deselections (#1989)
• 6ee0e46 Update oneDAL DPC interface detection (#1990)
• dadfd62 Update daal4py/README.md with new conda channel (#1978)
• Additional commits viewable in compare view

Updates scikit-learn-intelex from 2024.6.0 to 2024.7.0

Release notes

Sourced from scikit-learn-intelex's releases.

Intel® Extension for Scikit-learn* 2024.7.0

Intel® Extension for Scikit-learn* is happy to introduce 2024.7.0 release!

🚨 What's New

• Introduced new Intel® Extension for Scikit-learn* functionality:
  • Sparse data support for LogisticRegression
  • Basic Statistic API improvement
  • Added random_state warning to SVM probability estimates
  • Unified daal4py and sklearnex builds

🪲 Bug Fixes

• Fix issues with sklearn conformance for preview Ridge for 2024.6.0
• Fix on preview ridge tests having too little error tolerance for coefficients assertions
• Fix for Logistic Regression loss scaling
• Fix to prevent support_usm_ndarray from changing queue if explicitly provided
• Fix Multivariate Ridge Regression coefficients
• Fix circular import in daal4py/sklearnex device_offloading
• Align sklearnex BasicStatistics._onedal_fit with other algos

❌ Deprecation Notice

• Removed Python 3.8 support

Acknowledgements

Thanks to everyone who helped us make 2024.7.0 release possible!

@​Alexsandruss, @​Alexandr-Solovev, @​Vika-F, @​icfaust, @​napetrov, @​maria-Petrova, @​ahuber21, @​ethanglaser, @​samir-nasibli, @​aepanchi, @​emmwalsh, @​olegkkruglov, @​razdoburdin, @​avolkov-intel, @​md-shafiul-alam

Full Changelog: uxlfoundation/scikit-learn-intelex@2024.6.0...2024.7.0

Commits

• a205592 FIX: incremental estimators tests (#1998) (#2021)
• 84666fa FIX: fixing spmd tests utilities for dpctl inputs (#1999) (#2020)
• ae3c3a5 Logistic Regression CI fix (#2013) (#2017)
• dd305dc Add sparse data support for LogisticRegression (#1985) (#2010)
• c04e50d Update sklearn versions badge in README (#1997)
• 9606c69 Update version.py (#1994)
• a2b89b4 CI: remove SVM+neighbors GPU deselections (#1991)
• d7bd00b CI: mpi-pytest follow-up deselections (#1989)
• 6ee0e46 Update oneDAL DPC interface detection (#1990)
• dadfd62 Update daal4py/README.md with new conda channel (#1978)
• Additional commits viewable in compare view

Updates pandas from 2.2.2 to 2.2.3

Release notes

Sourced from pandas's releases.

Pandas 2.2.3

We are pleased to announce the release of pandas 2.2.3. This release includes some new features, bug fixes, and performance improvements. We recommend that all users upgrade to this version.

See the full whatsnew for a list of all the changes. Pandas 2.2.3 supports Python 3.9 and higher.

The release will be available on the defaults and conda-forge channels:

conda install pandas

Or via PyPI:

python3 -m pip install --upgrade pandas

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

Commits

• 0691c5c RLS: 2.2.3
• 658dfdd relax cython bound
• 6891e90 Backport PR #59847: BLD: Build wheels for Python 3.13 on aarch64 as well
• f108468 RLS: 2.2.3
• 6958738 Backport PR #59840: BLD: Final release prep for 2.2.3 (#59842)
• 0bd98fe Backport PR #59136 on branch 2.2.x (Upload 3.13 & free-threaded nightly wheel...
• 8d67e77 Backport PR #59836 on branch 2.2.x (BLD: Fix bad Cython annotation) (#59837)
• f7b6378 Assorted backports for 2.2.x (#59785)
• 2127b42 Backport #59144 on 2.2.x / 2.3.x (remove ops div class to solve #2137) (#59535)
• 4a20adb Backport PR #59813 on branch 2.2.x (CI: Debug failing ARM builds) (#59828)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
pip/daal4py	2024.7.0	🟢 6.6	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
pip/pandas	2.2.3	🟢 6.4	Details Check Score Reason Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration CI-Tests 🟢 10 30 out of 30 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices ⚠️ 0 no badge detected Code-Review 🟢 8 25 out of last 30 changesets reviewed before merge -- score normalized to 8 Contributors 🟢 10 47 different organizations found -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool ⚠️ 0 no update tool detected Fuzzing 🟢 10 project is fuzzed with [OSSFuzz] License 🟢 10 license file detected Maintained 🟢 10 30 commit(s) out of 30 and 21 issue activity out of 30 found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 no published package detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 SAST 🟢 7 SAST tool detected but not run on all commmits Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ 0 0 out of 5 artifacts are signed or have provenance Token-Permissions ⚠️ 0 non read-only tokens detected in GitHub workflows Vulnerabilities 🟢 10 no vulnerabilities detected
pip/scikit-learn-intelex	2024.7.0	🟢 6.6	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0

Scanned Manifest Files

classical-ml/requirements.txt

• daal4py@2024.7.0
• pandas@2.2.3
• scikit-learn-intelex@2024.7.0
• daal4py@2024.6.0
• pandas@2.2.2
• scikit-learn-intelex@2024.6.0

[github-advanced-security]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

[github-actions]

Test-Group	Test	Status
classical-ml-tests-logs	classical-ml-import-idp	PASS
classical-ml-tests-logs	classical-ml-import-pip	PASS
classical-ml-tests-logs	classical-ml-import-idp-jupyter	PASS
classical-ml-tests-logs	classical-ml-import-pip-jupyter	PASS
classical-ml-tests-logs	classical-ml-performance-idp	PASS
classical-ml-tests-logs	classical-ml-performance-pip	PASS