Bump the dependencies group across 1 directory with 11 updates

[dependabot]

Bumps the dependencies group with 10 updates in the / directory:

Package	From	To
aiohttp	3.11.13	3.11.14
filelock	3.17.0	3.18.0
ruff	0.9.9	0.11.2
types-tqdm	4.67.0.20250301	4.67.0.20250319
pre-commit	4.1.0	4.2.0
types-requests	2.32.0.20250301	2.32.0.20250306
pyarrow-stubs	17.17	17.19
tox	4.24.1	4.24.2
datasets	3.3.2	3.4.1
transformers	4.49.0	4.50.0

Updates aiohttp from 3.11.13 to 3.11.14

Release notes

Sourced from aiohttp's releases.

3.11.14

Bug fixes

• Fixed an issue where dns queries were delayed indefinitely when an exception occurred in a trace.send_dns_cache_miss -- by :user:logioniz.

  Related issues and pull requests on GitHub: #10529.

• Fixed DNS resolution on platforms that don't support socket.AI_ADDRCONFIG -- by :user:maxbachmann.

  Related issues and pull requests on GitHub: #10542.

• The connector now raises :exc:aiohttp.ClientConnectionError instead of :exc:OSError when failing to explicitly close the socket after :py:meth:asyncio.loop.create_connection fails -- by :user:bdraco.

  Related issues and pull requests on GitHub: #10551.

• Break cyclic references at connection close when there was a traceback -- by :user:bdraco.

  Special thanks to :user:availov for reporting the issue.

  Related issues and pull requests on GitHub: #10556.

• Break cyclic references when there is an exception handling a request -- by :user:bdraco.

  Related issues and pull requests on GitHub: #10569.

Features

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.11.14 (2025-03-16)

Bug fixes

• Fixed an issue where dns queries were delayed indefinitely when an exception occurred in a trace.send_dns_cache_miss -- by :user:logioniz.

  Related issues and pull requests on GitHub: :issue:10529.

• Fixed DNS resolution on platforms that don't support socket.AI_ADDRCONFIG -- by :user:maxbachmann.

  Related issues and pull requests on GitHub: :issue:10542.

• The connector now raises :exc:aiohttp.ClientConnectionError instead of :exc:OSError when failing to explicitly close the socket after :py:meth:asyncio.loop.create_connection fails -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:10551.

• Break cyclic references at connection close when there was a traceback -- by :user:bdraco.

  Special thanks to :user:availov for reporting the issue.

  Related issues and pull requests on GitHub: :issue:10556.

• Break cyclic references when there is an exception handling a request -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:10569.

... (truncated)

Commits

• 1a48a62 Release 3.11.14 (#10582)
• d40e227 [PR #10577/3c60cd22 backport][3.11] Parametrize leak tests (#10580)
• 9396ef1 [PR #10542/e1d2d77c backport][3.11] only use AI_ADDRCONFIG when supported b...
• 4005080 [PR #10564/a59e74b7 backport][3.11] Log offending websocket client address wh...
• 6ae2570 [PR #10569/dfbf782b backport][3.11] Break cyclic references when there is an ...
• 771d203 [PR #10556/9d4e1161 backport][3.11] Break cyclic references at connection clo...
• 6357c05 [PR #10551/d067260d backport][3.11] Re-raise OSError as ClientConnectionError...
• e9f3f03 [PR #10529/492f63dc backport][3.11] Fixed bug that lead to infinite wait for ...
• 928e6d7 [PR #10552/44e669be backport][3.11] Cache parsing of the content-type (#10557)
• 7205661 [PR #10553/55c5f1fc backport][3.11] Add benchmark for JSON post requests that...
• Additional commits viewable in compare view

Updates filelock from 3.17.0 to 3.18.0

Release notes

Sourced from filelock's releases.

3.18.0

What's Changed

• Indicate that locks are exclusive/write locks. by @​bicarlsen in tox-dev/filelock#394
• Support fcntl check on Emscripten by @​juntyr in tox-dev/filelock#398

New Contributors

• @​bicarlsen made their first contribution in tox-dev/filelock#394
• @​juntyr made their first contribution in tox-dev/filelock#398

Full Changelog: tox-dev/filelock@3.17.0...3.18.0

Commits

• 129a1ef [pre-commit.ci] pre-commit autoupdate (#405)
• 717d7e0 [pre-commit.ci] pre-commit autoupdate (#403)
• efba779 [pre-commit.ci] pre-commit autoupdate (#401)
• 82f5a2d Support fcntl check on Emscripten (#398)
• 468ba43 [pre-commit.ci] pre-commit autoupdate (#396)
• 0ac6826 [pre-commit.ci] pre-commit autoupdate (#395)
• b5f98a6 Indicate that locks are exclusive/write locks. (#394)
• 3c9b680 [pre-commit.ci] pre-commit autoupdate (#393)
• 2760759 [pre-commit.ci] pre-commit autoupdate (#391)
• 18c9571 Bump pypa/gh-action-pypi-publish from 1.12.3 to 1.12.4 (#390)
• See full diff in compare view

Updates numpy from 2.0.2 to 2.2.2

Release notes

Sourced from numpy's releases.

2.2.2 (Jan 18, 2025)

NumPy 2.2.2 Release Notes

NumPy 2.2.2 is a patch release that fixes bugs found after the 2.2.1 release. The number of typing fixes/updates is notable. This release supports Python versions 3.10-3.13.

Contributors

A total of 8 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

• Alicia Boya García +
• Charles Harris
• Joren Hammudoglu
• Kai Germaschewski +
• Nathan Goldbaum
• PTUsumit +
• Rohit Goswami
• Sebastian Berg

Pull requests merged

A total of 16 pull requests were merged for this release.

• #28050: MAINT: Prepare 2.2.x for further development
• #28055: TYP: fix void arrays not accepting str keys in __setitem__
• #28066: TYP: fix unnecessarily broad integer binop return types (#28065)
• #28112: TYP: Better ndarray binop return types for float64 &...
• #28113: TYP: Return the correct bool from issubdtype
• #28114: TYP: Always accept date[time] in the datetime64 constructor
• #28120: BUG: Fix auxdata initialization in ufunc slow path
• #28131: BUG: move reduction initialization to ufunc initialization
• #28132: TYP: Fix interp to accept and return scalars
• #28137: BUG: call PyType_Ready in f2py to avoid data races
• #28145: BUG: remove unnecessary call to PyArray_UpdateFlags
• #28160: BUG: Avoid data race in PyArray_CheckFromAny_int
• #28175: BUG: Fix f2py directives and --lower casing
• #28176: TYP: Fix overlapping overloads issue in 2->1 ufuncs
• #28177: TYP: preserve shape-type in ndarray.astype()
• #28178: TYP: Fix missing and spurious top-level exports

Checksums

MD5

749cb2adf8043551aae22bbf0ed3130a  numpy-2.2.2-cp310-cp310-macosx_10_9_x86_64.whl
bc79fa2e44316b7ce9bacb48a993ed91  numpy-2.2.2-cp310-cp310-macosx_11_0_arm64.whl
c6b2caa2bbb645b5950dccb77efb1dbb  numpy-2.2.2-cp310-cp310-macosx_14_0_arm64.whl
8c410efac169af880cacbbac8a731658  numpy-2.2.2-cp310-cp310-macosx_14_0_x86_64.whl

... (truncated)

Changelog

Sourced from numpy's changelog.

This is a walkthrough of the NumPy 2.1.0 release on Linux, modified for building with GitHub Actions and cibuildwheels and uploading to the anaconda.org staging repository for NumPy <https://anaconda.org/multibuild-wheels-staging/numpy>_. The commands can be copied into the command line, but be sure to replace 2.1.0 by the correct version. This should be read together with the :ref:general release guide <prepare_release>.

Facility preparation

Before beginning to make a release, use the requirements/*_requirements.txt files to ensure that you have the needed software. Most software can be installed with pip, but some will require apt-get, dnf, or whatever your system uses for software. You will also need a GitHub personal access token (PAT) to push the documentation. There are a few ways to streamline things:

• Git can be set up to use a keyring to store your GitHub personal access token. Search online for the details.
• You can use the keyring app to store the PyPI password for twine. See the online twine documentation for details.

Prior to release

Add/drop Python versions

When adding or dropping Python versions, three files need to be edited:

• .github/workflows/wheels.yml # for github cibuildwheel
• tools/ci/cirrus_wheels.yml # for cibuildwheel aarch64/arm64 builds
• pyproject.toml # for classifier and minimum version check.

Make these changes in an ordinary PR against main and backport if necessary. Add [wheel build] at the end of the title line of the commit summary so that wheel builds will be run to test the changes. We currently release wheels for new Python versions after the first Python rc once manylinux and cibuildwheel support it. For Python 3.11 we were able to release within a week of the rc1 announcement.

Backport pull requests

Changes that have been marked for this release must be backported to the maintenance/2.1.x branch.

Update 2.1.0 milestones

... (truncated)

Commits

• fd8a68e Merge pull request #28184 from charris/prepare-2.2.2
• 0d106a5 REL: Prepare for the NumPy 2.2.2 release [wheel build]
• dfdd35a Merge pull request #28175 from charris/backport-28056
• e4517a8 Merge pull request #28176 from charris/backport-28168
• 2c0432b Merge pull request #28178 from charris/backport-28170
• 2230a08 Merge pull request #28177 from charris/backport-28169
• b04e32c TYP: Fix missing and spurious top-level exports
• 6a5f537 TYP: preserve shape-type in ndarray.astype()
• f782790 TYP: Fix overlapping overloads issue in 2->1 ufuncs
• a19acf1 BUG: Fix casing for f2py directives
• Additional commits viewable in compare view

Updates ruff from 0.9.9 to 0.11.2

Release notes

Sourced from ruff's releases.

0.11.2

Release Notes

Preview features

• [syntax-errors] Fix false-positive syntax errors emitted for annotations on variadic parameters before Python 3.11 (#16878)

Contributors

• @​AlexWaygood
• @​MatthewMckee4
• @​dhruvmanila
• @​junhsonjb
• @​mtshiba
• @​ntBre

Install ruff 0.11.2

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.11.2/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.11.2/ruff-installer.ps1 | iex"

Download ruff 0.11.2

File	Platform	Checksum
ruff-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ruff-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
ruff-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum
ruff-i686-pc-windows-msvc.zip	x86 Windows	checksum
ruff-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
ruff-aarch64-unknown-linux-gnu.tar.gz	ARM64 Linux	checksum
ruff-i686-unknown-linux-gnu.tar.gz	x86 Linux	checksum
ruff-powerpc64-unknown-linux-gnu.tar.gz	PPC64 Linux	checksum
ruff-powerpc64le-unknown-linux-gnu.tar.gz	PPC64LE Linux	checksum
ruff-s390x-unknown-linux-gnu.tar.gz	S390x Linux	checksum
ruff-x86_64-unknown-linux-gnu.tar.gz	x64 Linux	checksum
ruff-armv7-unknown-linux-gnueabihf.tar.gz	ARMv7 Linux	checksum
ruff-aarch64-unknown-linux-musl.tar.gz	ARM64 MUSL Linux	checksum
ruff-i686-unknown-linux-musl.tar.gz	x86 MUSL Linux	checksum
ruff-x86_64-unknown-linux-musl.tar.gz	x64 MUSL Linux	checksum
ruff-arm-unknown-linux-musleabihf.tar.gz	ARMv6 MUSL Linux (Hardfloat)	checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.11.2

Preview features

• [syntax-errors] Fix false-positive syntax errors emitted for annotations on variadic parameters before Python 3.11 (#16878)

0.11.1

Preview features

• [airflow] Add chain, chain_linear and cross_downstream for AIR302 (#16647)
• [syntax-errors] Improve error message and range for pre-PEP-614 decorator syntax errors (#16581)
• [syntax-errors] PEP 701 f-strings before Python 3.12 (#16543)
• [syntax-errors] Parenthesized context managers before Python 3.9 (#16523)
• [syntax-errors] Star annotations before Python 3.11 (#16545)
• [syntax-errors] Star expression in index before Python 3.11 (#16544)
• [syntax-errors] Unparenthesized assignment expressions in sets and indexes (#16404)

Bug fixes

• Server: Allow FixAll action in presence of version-specific syntax errors (#16848)
• [flake8-bandit] Allow raw strings in suspicious-mark-safe-usage (S308) #16702 (#16770)
• [refurb] Avoid panicking unwrap in verbose-decimal-constructor (FURB157) (#16777)
• [refurb] Fix starred expressions fix (FURB161) (#16550)
• Fix --statistics reporting for unsafe fixes (#16756)

Rule changes

• [flake8-executables] Allow uv run in shebang line for shebang-missing-python (EXE003) (#16849,#16855)

CLI

• Add --exit-non-zero-on-format (#16009)

Documentation

• Update Ruff tutorial to avoid non-existent fix in __init__.py (#16818)
• [flake8-gettext] Swap format- and printf-in-get-text-func-call examples (INT002, INT003) (#16769)

0.11.0

This is a follow-up to release 0.10.0. Because of a mistake in the release process, the requires-python inference changes were not included in that release. Ruff 0.11.0 now includes this change as well as the stabilization of the preview behavior for PGH004.

Breaking changes

• Changes to how the Python version is inferred when a target-version is not specified (#16319)

  In previous versions of Ruff, you could specify your Python version with:

  • The target-version option in a ruff.toml file or the [tool.ruff] section of a pyproject.toml file.

... (truncated)

Commits

• 4773878 Bump 0.11.2 (#16896)
• 2a4d835 Use the common OperatorPrecedence for the parser (#16747)
• 04a8756 [red-knot] Check subtype relation between callable types (#16804)
• 193c381 [red-knot] Check whether two callable types are equivalent (#16698)
• 63e78b4 [red-knot] Ban most Type::Instance types in type expressions (#16872)
• 296d67a Special-case value-expression inference of special form subscriptions (#16877)
• 42cbce5 [syntax-errors] Fix star annotation before Python 3.11 (#16878)
• 6760251 Recognize SyntaxError: as an error code for ecosystem checks (#16879)
• 23382f5 [red-knot] add test cases result in false positive errors (#16856)
• c1971fd Bump 0.11.1 (#16871)
• Additional commits viewable in compare view

Updates types-tqdm from 4.67.0.20250301 to 4.67.0.20250319

Commits

• See full diff in compare view

Updates pre-commit from 4.1.0 to 4.2.0

Release notes

Sourced from pre-commit's releases.

pre-commit v4.2.0

Features

• For language: python first attempt a versioned python executable for the default language version before consulting a potentially unversioned sys.executable.
  • #3430 PR by @​asottile.

Fixes

• Handle error during conflict detection when a file is named "HEAD"
  • #3425 PR by @​tusharsadhwani.

Changelog

Sourced from pre-commit's changelog.

4.2.0 - 2025-03-18

Features

• For language: python first attempt a versioned python executable for the default language version before consulting a potentially unversioned sys.executable.
  • #3430 PR by @​asottile.

Fixes

• Handle error during conflict detection when a file is named "HEAD"
  • #3425 PR by @​tusharsadhwani.

Commits

• aa48766 v4.2.0
• bf6f11d Merge pull request #3430 from pre-commit/preferential-sys-impl
• 3e8d0f5 adjust python default_language_version to prefer versioned exe
• ff7256c Merge pull request #3425 from tusharsadhwani/ambiguous-ref
• b7eb412 fix: crash on ambiguous ref 'HEAD'
• 7b88c63 Merge pull request #3404 from pre-commit/pre-commit-ci-update-config
• 94b97e2 [pre-commit.ci] pre-commit autoupdate
• 2f93b80 Merge pull request #3401 from pre-commit/pre-commit-ci-update-config
• 4f90a1e [pre-commit.ci] pre-commit autoupdate
• aba1ce0 Merge pull request #3396 from pre-commit/all-repos_autofix_all-repos-sed
• Additional commits viewable in compare view

Updates types-requests from 2.32.0.20250301 to 2.32.0.20250306

Commits

• See full diff in compare view

Updates pyarrow-stubs from 17.17 to 17.19

Release notes

Sourced from pyarrow-stubs's releases.

17.19

What's Changed

• fix: from_arrays for both Table and RecordBatch by @​tekumara in zen-xu/pyarrow-stubs#189
• fix: resolve some pa.compute overlaps by @​dangotbanned in zen-xu/pyarrow-stubs#184
• fix: Include Array in chunked_array overload by @​dangotbanned in zen-xu/pyarrow-stubs#190

Full Changelog: zen-xu/pyarrow-stubs@17.18...17.19

17.18

What's Changed

• fix: support to construct ListArray with primitive type by @​zen-xu in zen-xu/pyarrow-stubs#179
• fix: Avoid chunked_array overlapping overloads by @​dangotbanned in zen-xu/pyarrow-stubs#183
• fix: Add placeholder annotations to pc.if_else by @​dangotbanned in zen-xu/pyarrow-stubs#182
• fix: Widen Array to Array | ChunkedArray by @​dangotbanned in zen-xu/pyarrow-stubs#181
• fix: add pc.fill_null by @​dangotbanned in zen-xu/pyarrow-stubs#185
• fix: Allow Table.from_arrays to take a list containing a mix of Array and ChunkedArray by @​tekumara in zen-xu/pyarrow-stubs#187

Full Changelog: zen-xu/pyarrow-stubs@17.17...17.18

Commits

• 90d373d release 17.19 (#191)
• ecad016 fix: Include Array in chunked_array overload (#190)
• 93f756d fix: resolve some pa.compute overlaps (#184)
• bd91822 fix: from_arrays for both Table and RecordBatch (#189)
• dda1d1d [pre-commit.ci] pre-commit autoupdate (#180)
• c41da36 release 17.18 (#188)
• f858257 fix: Allow Table.from_arrays to take a list containing a mix of Array and Chu...
• e9b6405 fix: add pc.fill_null (#185)
• 9276d8c fix: Widen Array to Array | ChunkedArray (#181)
• c9e4858 fix: Add placeholder annotations to pc.if_else (#182)
• Additional commits viewable in compare view

Updates tox from 4.24.1 to 4.24.2

Release notes

Sourced from tox's releases.

4.24.2

What's Changed

• TOX-3117 bugfix -c pyproject with non legacy by @​AdrianCert in tox-dev/tox#3471
• fix(docs): update expected code by @​gforcada in tox-dev/tox#3480
• Add missing bracket in config example by @​jodal in tox-dev/tox#3481
• Gh issue 3456 update environment variable documentation by @​jugmac00 in tox-dev/tox#3482
• fix: Respect --parallel N with --parallel-no-spinner by @​tusharsadhwani in tox-dev/tox#3495
• TOML set_env file support by @​juditnovak in tox-dev/tox#3478

New Contributors

• @​AdrianCert made their first contribution in tox-dev/tox#3471
• @​gforcada made their first contribution in tox-dev/tox#3480
• @​jodal made their first contribution in tox-dev/tox#3481
• @​juditnovak made their first contribution in tox-dev/tox#3478

Full Changelog: tox-dev/tox@4.24.1...4.24.2

Changelog

Sourced from tox's changelog.

v4.24.2 (2025-03-07)

Bugfixes - 4.24.2

- multiple source_type supports for the same filename. Like pyproject.toml can be load by both TomlPyProject & LegacyToml (:issue:`3117`)
- Support ``set_env = { file = "conf{/}local.env"}`` for TOML format - by :user:`juditnovak`. (:issue:`3474`)
- fix example on the docs (:issue:`3480`)
- - ``--parallel-no-spinner`` now respects max CPU set by ``--parallel N`` (:issue:`3495`)
Improved Documentation - 4.24.2

• Updates the documentation for os.environ['KEY'] when the variable does not exist - by :user:jugmac00. (:issue:3456)

Commits

• 05835bf release 4.24.2
• 4852262 TOML set_env file support (#3478)
• 1dac11f fix: Respect --parallel N with --parallel-no-spinner (#3495)
• fd44904 [pre-commit.ci] pre-commit autoupdate (#3488)
• 32879c8 [pre-commit.ci] pre-commit autoupdate (#3486)
• 0a4ba54 [pre-commit.ci] pre-commit autoupdate (#3484)
• 65d404e Gh issue 3456 update environment variable documentation (#3482)
• 28212ab Add missing bracket in config example (#3481)
• 6b40c0c fix(docs): update expected code (#3480)
• 6e53aea [pre-commit.ci] pre-commit autoupdate (#3479)
• Additional commits viewable in compare view

Updates datasets from 3.3.2 to 3.4.1

Release notes

Sourced from datasets's releases.

3.4.1

Bug Fixes

• Fix data_files filtering by @​lhoestq in huggingface/datasets#7459

Full Changelog: huggingface/datasets@3.4.0...3.4.1

3.4.0

Dataset Features

• Faster folder based builder + parquet support + allow repeated media + use torchvideo by @​lhoestq in huggingface/datasets#7424

  • /!\ Breaking change: we replaced decord with torchvision to read videos, since decord is not maintained anymore and isn't available for recent python versions, see the video dataset loading documentation here for more details. The Video type is still marked as experimental is this version

  from datasets import load_dataset, Video
  dataset = load_dataset("path/to/video/folder", split="train")
  dataset[0]["video"]  # <torchvision.io.video_reader.VideoReader at 0x1652284c0>

  • faster streaming for image/audio/video folder from Hugging Face
  • support for metadata.parquet in addition to metadata.csv or metadata.jsonl for the metadata of the image/audio/video files

• Add IterableDataset.decode with multithreading by @​lhoestq in huggingface/datasets#7450

  • even faster streaming for image/audio/video folder from Hugging Face if you enable multithreading to decode image/audio/video data:

  dataset = dataset.decode(num_threads=num_threads)

• Add with_split to DatasetDict.map by @​jp1924 in huggingface/datasets#7368

General improvements and bug fixes

• fix: None default with bool type on load creates typing error by @​stephantul in huggingface/datasets#7426
• Use pyupgrade --py39-plus by @​cyyever in huggingface/datasets#7428
• Refactor string_to_dict to return None if there is no match instead of raising ValueError by @​ringohoffman in huggingface/datasets#7435
• Fix small bugs with async map by @​lhoestq in huggingface/datasets#7445
• Fix resuming after ds.set_epoch(new_epoch) by @​lhoestq in huggingface/datasets#7451
• minor docs changes by @​lhoestq in huggingface/datasets#7452

New Contributors

• @​stephantul made their first contribution in huggingface/datasets#7426
• @​cyyever made their first contribution in huggingface/datasets#7428
• @​jp1924 made their first contribution in huggingface/datasets#7368

Full Changelog: huggingface/datasets@3.3.2...3.4.0

Commits

• f742152 release: 3.4.1 (#7460)
• e7f1def Fix data_files filtering (#7459)
• 6f7cd01 set dev version (#7454)
• 14fb15a release: 3.4.0 (#7453)
• 97ff626 minor docs changes (#7452)
• e8ee24a Fix resuming after ds.set_epoch(new_epoch) (#7451)
• 7ad7379 Add IterableDataset.decode with multithreading (#7450)
• f09db01 Fix small bugs with async map (#7445)
• 67ffdfb Refactor string_to_dict to return None if there is no match instead of ra...
• f693f4e Add with_split to DatasetDict.map (#7368)
• Additional commits viewable in compare view

Updates transformers from 4.49.0 to 4.50.0

Release notes

Sourced from transformers's releases.

Release v4.50.0

New Model Additions

Model-based releases

Starting with version v4.49.0, we have been doing model-based releases, additionally to our traditional, software-based monthly releases. These model-based releases provide a tag from which models may be installed.

Contrarily to our software-releases; these are not pushed to pypi and are kept on our GitHub. Each release has a tag attributed to it, such as:

• v4.49.0-Gemma-3
• v4.49.0-AyaVision

⚠️ As bugs are identified and fixed on each model, the release tags are updated so that installing from that tag always gives the best experience possible with that model.

Each new model release will always be based on the current state of the main branch at the time of its creation. This ensures that new models start with the latest features and fixes available.

For example, if two models—Gemma-3 and AyaVision—are released from main, and then a fix for gemma3 is merged, it will look something like this:

              o---- v4.49.0-Gemma-3 (includes AyaVision, plus main fixes)
            /                  \  
---o--o--o--o--o-- (fix for gemma3) --o--o--o main
       \          
        o---- v4.49.0-AyaVision

We strive to merge model specific fixes on their respective branches as fast as possible!

Gemma 3

Gemma 3 is heavily referenced in the following model-based release and we recommend reading these if you want all the information relative to that model.

The Gemma 3 model was proposed by Google. It is a vision-language model composed by a SigLIP vision encoder and a Gemma 2 language decoder linked by a multimodal linear projection.

It cuts an image into a fixed number of tokens same way as Siglip if the image does not exceed certain aspect ratio. For images that exceed the given aspect ratio, it crops the image into multiple smaller pacthes and concatenates them with the base image embedding.

One particularity is that the model uses bidirectional attention on all the image tokens. Also, the model interleaves sliding window local attention with full causal attention in the language backbone, where each sixth layer is a full causal attention layer.

• Gemma3 by @​RyanMullins in #36658

Shield Gemma2

ShieldGemma 2 is built on Gemma 3, is a 4 billion (4B) parameter model that checks the safety of both synthetic and natural images against key categories to help you build robust datasets and models. With this addition to the Gemma family of models, researchers and developers can now easily minimize the risk of harmful content in their models across key areas of harm as defined below:

• No Sexually Explicit content: The image shall not contain content that depicts explicit or graphic sexual acts (e.g., pornography, erotic nudity, depictions of rape or sexual assault).
• No Dangerous Content: The image shall not contain content that facilitates or encourages activities that could cause real-world harm (e.g., building firearms and explosive devices, promotion of terrorism, instructions for suicide).
• No Violence/Gore content: The image shall not contain content that depicts shocking, sensational, or gratuitous violence (e.g., excessive blood and gore, gratuitous violence against animals, extreme injury or moment of death).

We recommend using ShieldGemma 2 as an input filter to vision language models, or as an output filter of image generation systems. To train a robust image safety model, we curated training datasets of natural and synthetic images and instruction-tuned Gemma 3 to demonstrate strong performance.

... (truncated)

Commits

• 0b057e6 fix import issue
• 26fbd69 v 4.50.0
• 523f6e7 Fix: dtype cannot be str (#36262)
• 3f9ff19 Minor Gemma 3 fixes (#36884)
• f94b0c5 Use deformable_detr kernel from the Hub (#36853)
• 2638d54 Gemma 3 tests expect greedy decoding (#36882)
• b8aadc3 🔴 🔴 🔴 supersede paligemma forward to shift p...
• 6321876 add eustlb as an actor
• 94f4876 [generate] model defaults being inherited only happens for newer models (#36881)
• f19d018 Revert "Update deprecated Jax calls (#35919)" (#36880)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• `@dependabot...

Description has been truncated

[orangetin]

@dependabot rebase

[dependabot]

Looks like this PR is already up-to-date with main! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.