Skip to content

Bump the pip group across 1 directory with 2 updates #1249

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 2 commits into from
Closed

Bump the pip group across 1 directory with 2 updates #1249

wants to merge 2 commits into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 21, 2025

Bumps the pip group with 2 updates in the /applications/ehr_query_llm/lmm directory: langchain-community and pypdf.

Updates langchain-community from 0.3.20 to 0.3.27

Release notes

Sourced from langchain-community's releases.

langchain-tests==0.3.22

Changes since langchain-tests==0.3.21

release(standard-tests): 0.3.22 (#33186) feat: (core, standard-tests) support PDF inputs in ToolMessages (#33183) docs: more standardization (#33124) docs: standardize .. code-block directive usage (#33122) chore: bump ruff version to 0.13 (#33043) chore: update pyproject.toml files, remove codespell (#33028) chore: bump mypy version to 1.18 (#32914) revert: "chore: remove ruff target-version" (#32895) chore: remove ruff target-version (#32880) feat(standard-tests): add a property to skip relevant tests if the vector store doesn't support get_by_ids() (#32633) fix(standard-tests): ensure non-negative token counts in usage metadata assertions (#32593) chore(standard-tests): enable ruff docstring-code-format (#32852) fix(standard-tests): standard vectorstore tests accept out-of-order get_by_ids (#32821) chore(standard-tests): select ALL rules with exclusions (#31937) chore(standard-tests): add mypy strict checking (#32384)

langchain-anthropic==0.3.22

Changes since langchain-anthropic==0.3.21

release(anthropic): 0.3.22 (#33394) fix(anthropic,standard-tests): carry over updates to v0.3 (#33393) chore: cap lib upper bounds, run sync (#33320) feat: (core, standard-tests) support PDF inputs in ToolMessages (#33183)

Commits
  • bdf1cd3 fix(langchain): update deps
  • 77c9819 fix(text-splitters): update langchain-core version to 0.3.72
  • 7f015b6 fix(text-splitters): update lock for release
  • 71ad451 Merge branch 'master' of github.com:langchain-ai/langchain
  • 2c42893 fix(langchain): update langchain-core version to 0.3.72
  • 0e139fb release(langchain): 0.3.27 (#32227)
  • 622bb05 fix(langchain): class HTMLSemanticPreservingSplitter ignores the text inside ...
  • 56dde3a feat(langchain): v1 scaffolding (#32166)
  • bd3d649 release(core): 0.3.72 (#32214)
  • fb5da83 fix(core): Dereference Refs for pydantic schema fails in tool schema generati...
  • Additional commits viewable in compare view

Updates pypdf from 5.4.0 to 6.1.3

Release notes

Sourced from pypdf's releases.

Version 6.1.3, 2025-10-22

What's new

Security (SEC)

Bug Fixes (BUG)

  • PageObject.scale() scales media box incorrectly (#3489) by @​Nid01

Robustness (ROB)

Full Changelog

Version 6.1.2, 2025-10-19

What's new

Bug Fixes (BUG)

Robustness (ROB)

Developer Experience (DEV)

Full Changelog

Version 6.1.1, 2025-09-28

What's new

Bug Fixes (BUG)

Documentation (DOC)

Full Changelog

Version 6.1.0, 2025-09-21

What's new

New Features (ENH)

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 6.1.3, 2025-10-22

Security (SEC)

  • Allow limiting size of LZWDecode streams (#3502)
  • Avoid infinite loop when reading broken DCT-based inline images (#3501)

Bug Fixes (BUG)

  • PageObject.scale() scales media box incorrectly (#3489)

Robustness (ROB)

  • Fail with explicit exception when image mode is an empty array (#3500)

Full Changelog

Version 6.1.2, 2025-10-19

Bug Fixes (BUG)

  • Fix handling of zero-length StreamObject (#3485)

Robustness (ROB)

  • Deal with wrong size for incremental PDF files (#3495)
  • Improve handling for malformed cross-reference tables (#3483)

Developer Experience (DEV)

  • Use released Python 3.14
  • Use Mapping instead of dict in type hint of update_page_form_field_values (#3490)

Full Changelog

Version 6.1.1, 2025-09-28

Bug Fixes (BUG)

  • Insert new embedded files in a sorted manner (#3477)
  • Fix name tree handling for embedded files with Kids-based inputs (#3475)
  • Make embedding files not break PDF/A-3 compliance (#3472)

Documentation (DOC)

  • Document AFRelationship handling for PDF/A and provide constants (#3478)

Full Changelog

Version 6.1.0, 2025-09-21

New Features (ENH)

  • Enhance XMP metadata handling with creation and setter methods (#3410)
  • Add all font metrics for base 14 Type 1 PDF fonts (#3363)
  • Allow deleting embedded files (#3461)
  • Add support for Python in FIPS mode for document identifier (#3438)

Bug Fixes (BUG)

... (truncated)

Commits
  • 4a613f3 REL: 6.1.3
  • e51d078 SEC: Allow limiting size of LZWDecode streams (#3502)
  • f2864d6 SEC: Avoid infinite loop when reading broken DCT-based inline images (#3501)
  • b751ca2 ROB: Fail with explicit exception when image mode is an empty array (#3500)
  • e13a1e0 BUG: PageObject.scale() scales media box incorrectly (#3489)
  • 0859b35 REL: 6.1.2
  • 623a700 BUG: Fix handling of zero-length StreamObject (#3485)
  • 16c4c44 ROB: Deal with wrong size for incremental PDF files (#3495)
  • 54c0dd7 DEV: Use released Python 3.14
  • 9fad9ff DEV: Use Mapping instead of dict in type hint of update_page_form_field_value...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump the pip group across 1 directory with 2 updates
c746acf 
Bumps the pip group with 2 updates in the /applications/ehr_query_llm/lmm directory: [langchain-community](https://github.com/langchain-ai/langchain) and [pypdf](https://github.com/py-pdf/pypdf).


Updates `langchain-community` from 0.3.20 to 0.3.27
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-community==0.3.20...langchain==0.3.27)

Updates `pypdf` from 5.4.0 to 6.1.3
- [Release notes](https://github.com/py-pdf/pypdf/releases)
- [Changelog](https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md)
- [Commits](py-pdf/pypdf@5.4.0...6.1.3)

---
updated-dependencies:
- dependency-name: langchain-community
  dependency-version: 0.3.27
  dependency-type: direct:production
  dependency-group: pip
- dependency-name: pypdf
  dependency-version: 6.1.3
  dependency-type: direct:production
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Nov 21, 2025
@greptile-apps
Copy link
Contributor

greptile-apps bot commented Nov 21, 2025

Skipped: This PR was opened by one of your excluded authors: (dependabot[bot])

@bhashemian
Copy link
Member

bhashemian commented Dec 1, 2025

The proposed dependency update won’t work. Therefore, I’ll close this PR and address the issues concurrently in separate PRs. Part of it is going to be addressed in #1232.

@bhashemian bhashemian closed this Dec 1, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 1, 2025

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@github-project-automation github-project-automation bot moved this to Done in Holohub Dec 1, 2025
@dependabot dependabot bot deleted the dependabot/pip/applications/ehr_query_llm/lmm/pip-e780a79edd branch December 1, 2025 21:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

Holohub
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@bhashemian