Bump the pip group across 1 directory with 5 updates

[dependabot]

Bumps the pip group with 5 updates in the /ai directory:

Package	From	To
gradio	4.31.5	4.37.1
mlflow	2.13.0	2.14.2
certifi	2024.2.2	2024.7.4
tornado	6.4	6.4.1
urllib3	2.2.1	2.2.2

Updates gradio from 4.31.5 to 4.37.1

Release notes

Sourced from gradio's releases.

@​gradio/lite@​4.37.1

Dependency updates

• gradio@4.37.1

gradio@4.37.1

Fixes

• #8610 9204d86 - Add guide on cleaning up state and file resources. Thanks @​freddyaboulton!

gradio@4.36.1

Features

• #8491 ffd53fa - Remove broken guide redirect. Thanks @​aliabd!
• #8499 c5f6e77 - Cache break themes on change. Thanks @​aliabid94!

Fixes

• #8504 2a59bab - Fixes TabbedInterface bug where only first interface events get triggered. Thanks @​freddyaboulton!

@​gradio/lite@​4.36.1

Dependency updates

• gradio@4.36.1

Changelog

Sourced from gradio's changelog.

4.37.1

Fixes

• #8610 9204d86 - Add guide on cleaning up state and file resources. Thanks @​freddyaboulton!

4.37.0

Features

• #8131 bb504b4 - Gradio components in gr.Chatbot(). Thanks @​dawoodkhan82!
• #8489 c2a0d05 - Control Display of Error, Info, Warning. Thanks @​freddyaboulton!
• #8571 a77877f - First time loading performance optimization. Thanks @​baojianting!
• #8607 c7cd0a0 - Ensure chatbot background is consistent with other components. Thanks @​pngwn!
• #8555 7fc7455 - support html in chatbot. Thanks @​pngwn!
• #8590 65afffd - Fix multimodal chat look. Thanks @​aliabid94!
• #8603 affce4c - Fix resizer on altair. Thanks @​aliabid94!
• #8580 797621b - Improved plot rendering to thematically match. Thanks @​aliabid94!/n highlight:Expect visual changes in gr.Plot, gr.BarPlot, gr.LinePlot, gr.ScatterPlot, including changes to color and width sizing.
• #8520 595ecf3 - Add build target option to the custom component gradio.config.js file. Thanks @​pngwn!
• #8593 d35c290 - Adding more docs for using components in chatbot. Thanks @​abidlabs!
• #8609 36b2af9 - Changed gradio version check from print statement to warning. Thanks @​gdevakumar!
• #8600 7289c4b - Add credentials: include and Cookie header to prevent 401 error. Thanks @​yinkiu602!
• #8488 b03da67 - Minor changes to monitoring. Thanks @​freddyaboulton!
• #8569 6f99a02 - Upgrade pyodide 0.26. Thanks @​whitphx!
• #8565 fd5aab1 - Remove duplicated code in routes.py. Thanks @​sadra-barikbin!
• #8529 d43d696 - feat: exception handling about file_count params of File component. Thanks @​young-hun-jo!
• #8528 2b0c157 - Added an optional height and overflow scrollbar for the Markdown Component. Thanks @​ShruAgarwal!
• #8516 de6aa2b - Add helper classes to docs. Thanks @​aliabd!
• #8522 bdaa678 - add handle_file docs. Thanks @​pngwn!

Fixes

• #8599 ca125b7 - Fix reload mode for jupyter notebook and stateful demos. Thanks @​freddyaboulton!
• #8521 900cf25 - Ensure frontend functions work when they don't return a value. Thanks @​pngwn!
• #8594 530f8a0 - chatbot component tweaks. Thanks @​pngwn!
• #8530 d429690 - Fix request serialization for fastapi /docs. Thanks @​zhzLuke96!
• #8589 34430b9 - Handle GIFs correct in gr.Image preprocessing. Thanks @​abidlabs!
• #8506 7c5fec3 - Use root url for monitoring url. Thanks @​abidlabs!
• #8524 546d14e - add test + demo. Thanks @​pngwn!
• #8588 1e61644 - move deploy_space_action.yaml to correct location. Thanks @​abidlabs!
• #8543 a4433be - Ability to disable orange progress animation for generators by setting show_progress='minimal' or show_progress='hidden' in the event definition. This is a small visual breaking change but it aligns better with the expected behavior of the show_progress parameter. Also added show_progress to gr.Interface and gr.ChatInterface. Thanks @​freddyaboulton!
• #8579 bc5fccf - Allow gr.load to work inside gr.Blocks automatically. Thanks @​abidlabs!
• #8573 56af40f - Fixes the favicon_path working error. Thanks @​ShruAgarwal!
• #8548 7fc0f51 - Fix reload mode by implementing close on the client. Thanks @​freddyaboulton!
• #8531 88de38e - Fix custom components on windows. Thanks @​freddyaboulton!
• #8581 a1c21cb - fix dataset update. Thanks @​abidlabs!
• #8537 81ae766 - Many small fixes to website and docs. Thanks @​aliabd!

4.36.1

... (truncated)

Commits

• 8d425ee chore: update versions (#8613)
• 4cfb6ee chore: update versions (#8523)
• 9204d86 Add guide on cleaning up state and file resources (#8610)
• affce4c Fix resizer on altair (#8603)
• 8aad678 Fix plotly version (#8606)
• 36b2af9 Changed gradio version check from print statement to warning (#8609)
• c7cd0a0 Ensure chatbot background is consistent with other components (#8607)
• fe83e64 Small fix to guide styling (#8605)
• ca125b7 Fix reload mode for jupyter notebook and stateful demos (#8599)
• 65afffd Fix multimodal chat look (#8590)
• Additional commits viewable in compare view

Updates mlflow from 2.13.0 to 2.14.2

Release notes

Sourced from mlflow's releases.

MLflow 2.14.2 is a patch release that includes several important bug fixes and documentation enhancements.

Bug fixes:

• [Models] Fix an issue with requirements inference error handling when disabling the default warning-only behavior (#12547, @​B-Step62)
• [Models] Fix dependency inference issues with Transformers models saved with the unified API llm/v1/xxx task definitions. (#12551, @​B-Step62)
• [Models / Databricks] Fix an issue with MLlfow log_model introduced in MLflow 2.13.0 that causes Databricks DLT service to crash in some situations (#12514, @​WeichenXu123)
• [Models] Fix an output data structure issue with the predict_stream implementation for LangChain AgentExecutor and other non-Runnable chains (#12518, @​B-Step62)
• [Tracking] Fix an issue with the predict_proba inference method in the sklearn flavor when loading an sklearn pipeline object as pyfunc (#12554, @​WeichenXu123)
• [Tracking] Fix an issue with the Tracing implementation where other services usage of OpenTelemetry would activate MLflow tracing and cause errors (#12457, @​B-Step62)
• [Tracking / Databricks] Correct an issue when running dependency inference in Databricks that can cause duplicate dependency entries to be logged (#12493, @​sunishsheth2009)

Documentation updates:

• [Docs] Add documentation and guides for the MLflow tracing schema (#12521, @​BenWilson2)

Small bug fixes and documentation updates:

#12311, #12285, #12535, #12543, #12320, #12444, @​B-Step62; #12310, #12340, @​serena-ruan; #12409, #12432, #12471, #12497, #12499, @​harupy; #12555, @​nojaf; #12472, #12431, @​xq-yin; #12530, #12529, #12528, #12527, #12526, #12524, #12531, #12523, #12525, #12522, @​dbczumar; #12483, @​jsuchome; #12465, #12441, @​BenWilson2; #12450, @​StarryZhang-whu

MLflow 2.14.1 is a patch release that contains several bug fixes and documentation improvements

Bug fixes:

• [Models] Fix params and model_config handling for llm/v1/xxx Transformers model (#12401, @​B-Step62)
• [UI] Fix dark mode user preference (#12386, @​daniellok-db)
• [Docker] Fix docker image failing to build with install_mlflow=False (#12388, @​daniellok-db)

Documentation updates:

• [Docs] Add link to langchain autologging page in doc (#12398, @​xq-yin)
• [Docs] Add documentation for Models from Code (#12381, @​BenWilson2)

Small bug fixes and documentation updates:

#12415, #12396, #12394, @​harupy; #12403, #12382, @​BenWilson2; #12397, @​B-Step62

v2.14.0

2.14.0 (2024-06-17)

MLflow 2.14.0 includes several major features and improvements that we're very excited to announce!

Major features:

• MLflow Tracing: Tracing is powerful tool designed to enhance your ability to monitor, analyze, and debug GenAI applications by allowing you to inspect the intermediate outputs generated as your application handles a request. This update comes with an automatic LangChain integration to make it as easy as possible to get started, but we've also implemented high-level fluent APIs, and low-level client APIs for users who want more control over their trace instrumentation. For more information, check out the guide in our docs!
• Unity Catalog Integration: The MLflow Deployments server now has an integration with Unity Catalog, allowing you to leverage registered functions as tools for enhancing your chat application. For more information, check out this guide!
• OpenAI Autologging: Autologging support has now been added for the OpenAI model flavor. With this feature, MLflow will automatically log a model upon calling the OpenAI API. Each time a request is made, the inputs and outputs will be logged as artifacts. Check out the guide for more information!

Other Notable Features:

... (truncated)

Changelog

Sourced from mlflow's changelog.

2.14.2 (2024-07-03)

MLflow 2.14.2 is a patch release that includes several important bug fixes and documentation enhancements.

Bug fixes:

• [Models] Fix an issue with requirements inference error handling when disabling the default warning-only behavior (#12547, @​B-Step62)
• [Models] Fix dependency inference issues with Transformers models saved with the unified API llm/v1/xxx task definitions. (#12551, @​B-Step62)
• [Models / Databricks] Fix an issue with MLlfow log_model introduced in MLflow 2.13.0 that causes Databricks DLT service to crash in some situations (#12514, @​WeichenXu123)
• [Models] Fix an output data structure issue with the predict_stream implementation for LangChain AgentExecutor and other non-Runnable chains (#12518, @​B-Step62)
• [Tracking] Fix an issue with the predict_proba inference method in the sklearn flavor when loading an sklearn pipeline object as pyfunc (#12554, @​WeichenXu123)
• [Tracking] Fix an issue with the Tracing implementation where other services usage of OpenTelemetry would activate MLflow tracing and cause errors (#12457, @​B-Step62)
• [Tracking / Databricks] Correct an issue when running dependency inference in Databricks that can cause duplicate dependency entries to be logged (#12493, @​sunishsheth2009)

Documentation updates:

• [Docs] Add documentation and guides for the MLflow tracing schema (#12521, @​BenWilson2)

Small bug fixes and documentation updates:

#12311, #12285, #12535, #12543, #12320, #12444, @​B-Step62; #12310, #12340, @​serena-ruan; #12409, #12432, #12471, #12497, #12499, @​harupy; #12555, @​nojaf; #12472, #12431, @​xq-yin; #12530, #12529, #12528, #12527, #12526, #12524, #12531, #12523, #12525, #12522, @​dbczumar; #12483, @​jsuchome; #12465, #12441, @​BenWilson2; #12450, @​StarryZhang-whu

2.14.1 (2024-06-20)

MLflow 2.14.1 is a patch release that contains several bug fixes and documentation improvements

Bug fixes:

• [Models] Fix params and model_config handling for llm/v1/xxx Transformers model (#12401, @​B-Step62)
• [UI] Fix dark mode user preference (#12386, @​daniellok-db)
• [Docker] Fix docker image failing to build with install_mlflow=False (#12388, @​daniellok-db)

Documentation updates:

• [Docs] Add link to langchain autologging page in doc (#12398, @​xq-yin)
• [Docs] Add documentation for Models from Code (#12381, @​BenWilson2)

Small bug fixes and documentation updates:

#12415, #12396, #12394, @​harupy; #12403, #12382, @​BenWilson2; #12397, @​B-Step62

2.14.0 (2024-06-17)

MLflow 2.14.0 includes several major features and improvements that we're very excited to announce!

Major features:

• MLflow Tracing: Tracing is powerful tool designed to enhance your ability to monitor, analyze, and debug GenAI applications by allowing you to inspect the intermediate outputs generated as your application handles a request. This update comes with an automatic LangChain integration to make it as easy as possible to get started, but we've also implemented high-level fluent APIs, and low-level client APIs for users who want more control over their trace instrumentation. For more information, check out the guide in our docs!
• Unity Catalog Integration: The MLflow Deployments server now has an integration with Unity Catalog, allowing you to leverage registered functions as tools for enhancing your chat application. For more information, check out this guide!
• OpenAI Autologging: Autologging support has now been added for the OpenAI model flavor. With this feature, MLflow will automatically log a model upon calling the OpenAI API. Each time a request is made, the inputs and outputs will be logged as artifacts. Check out the guide for more information!

... (truncated)

Commits

• 20c31eb Run python3 dev/update_mlflow_versions.py pre-release ... (#12566)
• 5b95867 fix reversion
• e1d5f97 Update get_trace() fluent API to fetch trace from backend too (#12311)
• b0cb71d Revert "Databricks SDK doc / error message improvement (#12552)"
• a3f9024 Skip conversational tests for transformers dev (#12310)
• b9956d4 Refactor @trace_disabled implementation (#12285)
• d742cef Update pyfunc_serve_and_score_model to kill process after scoring (#12409)
• 3462aa0 Pin xgboost for FLAML (#12432)
• 0d6086d Document code_paths limitation when loading multiple models (#12471)
• e9bf530 Use editable install in autoformat workflow (#12497)
• Additional commits viewable in compare view

Updates certifi from 2024.2.2 to 2024.7.4

Commits

• bd81538 2024.07.04 (#295)
• 06a2cbf Bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 (#294)
• 13bba02 Bump actions/checkout from 4.1.6 to 4.1.7 (#293)
• e8abcd0 Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#292)
• 124f4ad 2024.06.02 (#291)
• c2196ce --- (#290)
• fefdeec Bump actions/checkout from 4.1.4 to 4.1.5 (#289)
• 3c5fb15 Bump actions/download-artifact from 4.1.6 to 4.1.7 (#286)
• 4a9569a Bump actions/checkout from 4.1.2 to 4.1.4 (#287)
• 1fc8086 Bump peter-evans/create-pull-request from 6.0.4 to 6.0.5 (#288)
• Additional commits viewable in compare view

Updates tornado from 6.4 to 6.4.1

Changelog

Sourced from tornado's changelog.

Release notes

.. toctree:: :maxdepth: 2

releases/v6.4.1 releases/v6.4.0 releases/v6.3.3 releases/v6.3.2 releases/v6.3.1 releases/v6.3.0 releases/v6.2.0 releases/v6.1.0 releases/v6.0.4 releases/v6.0.3 releases/v6.0.2 releases/v6.0.1 releases/v6.0.0 releases/v5.1.1 releases/v5.1.0 releases/v5.0.2 releases/v5.0.1 releases/v5.0.0 releases/v4.5.3 releases/v4.5.2 releases/v4.5.1 releases/v4.5.0 releases/v4.4.3 releases/v4.4.2 releases/v4.4.1 releases/v4.4.0 releases/v4.3.0 releases/v4.2.1 releases/v4.2.0 releases/v4.1.0 releases/v4.0.2 releases/v4.0.1 releases/v4.0.0 releases/v3.2.2 releases/v3.2.1 releases/v3.2.0 releases/v3.1.1 releases/v3.1.0 releases/v3.0.2 releases/v3.0.1 releases/v3.0.0 releases/v2.4.1 releases/v2.4.0 releases/v2.3.0

... (truncated)

Commits

• 2a0e1d1 Merge pull request #3388 from bdarnell/release-641
• b7af4e8 Release notes and version bump for version 6.4.1
• d65f6e7 Merge pull request #3387 from bdarnell/chunked-parsing
• 8d721a8 httputil: Only strip tabs and spaces from header values
• 7786f09 Merge pull request #3386 from bdarnell/curl-crlf
• fb119c7 http1connection: Stricter handling of transfer-encoding
• b0ffc58 curl_httpclient,http1connection: Prohibit CR and LF in headers
• 0efa9a4 Merge pull request #3385 from bdarnell/update-black
• 2757c6e Merge pull request #3384 from tornadoweb/dependabot/pip/requests-2.32.2
• 291d1b6 *: Update black
• Additional commits viewable in compare view

Updates urllib3 from 2.2.1 to 2.2.2

Release notes

Sourced from urllib3's releases.

2.2.2

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Changes

• Added the Proxy-Authorization header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect.
• Allowed passing negative integers as amt to read methods of http.client.HTTPResponse as an alternative to None. (#3122)
• Fixed return types representing copying actions to use typing.Self. (#3363)

Full Changelog: urllib3/urllib3@2.2.1...2.2.2

Changelog

Sourced from urllib3's changelog.

2.2.2 (2024-06-17)

• Added the Proxy-Authorization header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via Retry.remove_headers_on_redirect.
• Allowed passing negative integers as amt to read methods of http.client.HTTPResponse as an alternative to None. ([#3122](https://github.com/urllib3/urllib3/issues/3122) <https://github.com/urllib3/urllib3/issues/3122>__)
• Fixed return types representing copying actions to use typing.Self. ([#3363](https://github.com/urllib3/urllib3/issues/3363) <https://github.com/urllib3/urllib3/issues/3363>__)

Commits

• 27e2a5c Release 2.2.2 (#3406)
• accff72 Merge pull request from GHSA-34jh-p97f-mpxf
• 34be4a5 Pin CFFI to a new release candidate instead of a Git commit (#3398)
• da41058 Bump browser-actions/setup-chrome from 1.6.0 to 1.7.1 (#3399)
• b07a669 Bump github/codeql-action from 2.13.4 to 3.25.6 (#3396)
• b8589ec Measure coverage with v4 of artifact actions (#3394)
• f3bdc55 Allow triggering CI manually (#3391)
• 5239265 Fix HTTP version in debug log (#3316)
• b34619f Bump actions/checkout to 4.1.4 (#3387)
• 9961d14 Bump browser-actions/setup-chrome from 1.5.0 to 1.6.0 (#3386)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Dependabot couldn't find any dependency files in the directory. Because of this, Dependabot cannot update this pull request.

[dependabot]

Dependabot couldn't find any dependency files in the directory. Because of this, Dependabot cannot update this pull request.

[dependabot]

Dependabot couldn't find any dependency files in the directory. Because of this, Dependabot cannot update this pull request.