Build(deps): bump the pip-deps group across 1 directory with 7 updates

[dependabot]

Bumps the pip-deps group with 7 updates in the /requirements directory:

Package	From	To
ansys-sphinx-theme	1.7.0	1.7.2
pypandoc	1.16.2	1.17
pandas	3.0.1	3.0.2
pybind11	3.0.2	3.0.3
protobuf	6.33.5	7.34.1
grpcio	1.78.0	1.80.0
grpcio-tools	1.78.0	1.80.0

Updates ansys-sphinx-theme from 1.7.0 to 1.7.2

Release notes

Sourced from ansys-sphinx-theme's releases.

v1.7.2

Fixed

v1.7.1

Fixed

Dependencies

Maintenance

... (truncated)

Commits

• 74418ba chore: updating CHANGELOG for v1.7.2
• 95e7ed9 release: bump version 1.7.2
• 9f5fc6a chore: updating CHANGELOG for v1.7.1
• 49501c6 release: bump version 1.7.1
• 1854c3e ci: bump the actions group across 1 directory with 2 updates (#887)
• 3203435 build: bump tox from 4.36.0 to 4.36.1 (#891)
• 4164bad fix: add flexible dependency versions for Python 3.10+ support and new "...
• See full diff in compare view

Updates pypandoc from 1.16.2 to 1.17

Release notes

Sourced from pypandoc's releases.

Latest Development Version

Commits

• 7e33806: Bump astral-sh/setup-uv from 5 to 7 (dependabot[bot]) #432
• 4d162e9: Bump docker/setup-qemu-action from 3 to 4 (dependabot[bot]) #433
• 5ee338d: Merge branch 'master' into dependabot/github_actions/docker/setup-qemu-action-4 (Jessica Tegner) #433

Commits

• 51af11f Skip delocate repair for macOS binary wheels
• a19984f Fix cibuildwheel version tag to v3.4.0
• b30f851 Upgrade cibuildwheel from v2 to v3
• 52ef402 Merge pull request #431 from JessicaTegner/improve_download
• e1926a2 Move GITHUB_TOKEN to workflow-level env
• dd1d123 Fix incomplete URL substring sanitization (CodeQL)
• 69bddd0 [pre-commit.ci] auto fixes from pre-commit.com hooks
• 009df66 Add tests for pandoc download retry and auth behavior
• 16fb5e4 Fix GitHub 429 rate limit errors in pandoc download
• 497e395 Merge pull request #427 from JessicaTegner/issue423
• Additional commits viewable in compare view

Updates pandas from 3.0.1 to 3.0.2

Release notes

Sourced from pandas's releases.

pandas 3.0.2

We are pleased to announce the release of pandas 3.0.2. This is a patch release in the 3.0.x series and includes some regression fixes and bug fixes. We recommend that all users of the 3.0.x series upgrade to this version.

See the full whatsnew for a list of all the changes.

Pandas 3.0 supports Python 3.11 and higher. The release can be installed from PyPI:

python -m pip install --upgrade pandas==3.0.*

Or from conda-forge

conda install -c conda-forge pandas=3.0

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

Commits

• ab90747 RLS: 3.0.2 (#64934)
• 6f27013 Backport PR #64931 on branch 3.0.x (DOC/BLD: temporary disable upload of docs...
• 48ddc60 Backport PR #64664 on branch 3.0.x (BUG: DataFrame.sum() crashes on empty Dat...
• 8774488 [backport 3.0.x] PERF: fix slow python loop in validation for ArrowStringArra...
• 33af6cc Backport PR #64133 on branch 3.0.x (BUG: str.find returns byte offset instead...
• 4ef49d8 [backport 3.0.x] BUG: fix convert_dtypes dropping values from sliced mixed-dt...
• 0668f34 [backport 3.0.x] BUG: Fix HDFStore.put with StringDtype columns and compressi...
• 23f2f44 [backport 3.0.x] BUG: Suppress unnecessary RuntimeWarning in to_datetime with...
• 83ba804 Backport PR #64886: BUG: Compute Variance of Complex Numbers Correctly (#64892)
• bb5ca1a Backport PR #64386 on branch 3.0.x (BUG: fix sort_index AssertionError with R...
• Additional commits viewable in compare view

Updates pybind11 from 3.0.2 to 3.0.3

Release notes

Sourced from pybind11's releases.

Version 3.0.3

Bug fixes:

• Fixed TSS key exhaustion in implicitly_convertible() when many implicit conversions are registered across large module sets. #6020

• Fixed heap-buffer-overflow in pythonbuf with undersized buffers by enforcing a minimum buffer size. #6019

• Fixed virtual-inheritance pointer offset crashes when dispatching inherited methods through virtual bases. #6017

• Fixed free(): invalid pointer crashes during interpreter shutdown with py::enum_<> by duplicating late-added def_property_static argument strings. #6015

• Fixed function_record heap-type deallocation to call PyObject_Free() and decref the type. #6010

• Hardened PYBIND11_MODULE_PYINIT and get_internals() against module-initialization crashes. #6018

• Fixed static_pointer_cast build failure with virtual inheritance in holder_caster_foreign_helpers.h. #6014

• Fixed ambiguous factory template specialization that caused compilation failures with nvcc + GCC 14. #6011

• Fixed crash in def_readwrite for non-smart-holder properties of smart-holder classes. #6008

• Fixed memory leak for py::dynamic_attr() objects on Python 3.13+ by clearing managed __dict__ contents during deallocation. #5999

• Fixed binding of noexcept and ref-qualified (&, &&) methods inherited from unregistered base classes. #5992

Internal:

• Moved tomlkit dependency to the dev dependency group. #5990

• Switched to newer public CPython APIs (PyType_GetFlags and public vectorcall APIs where available). #6005

Tests:

• Made an async callback test deterministic by replacing fixed sleep with bounded waiting. #5986

CI:

... (truncated)

Changelog

Sourced from pybind11's changelog.

Version 3.0.3 (March 31, 2026)

Bug fixes:

• Fixed TSS key exhaustion in implicitly_convertible() when many implicit conversions are registered across large module sets. #6020

• Fixed heap-buffer-overflow in pythonbuf with undersized buffers by enforcing a minimum buffer size. #6019

• Fixed virtual-inheritance pointer offset crashes when dispatching inherited methods through virtual bases. #6017

• Fixed free(): invalid pointer crashes during interpreter shutdown with py::enum_<> by duplicating late-added def_property_static argument strings. #6015

• Fixed function_record heap-type deallocation to call PyObject_Free() and decref the type. #6010

• Hardened PYBIND11_MODULE_PYINIT and get_internals() against module-initialization crashes. #6018

• Fixed static_pointer_cast build failure with virtual inheritance in holder_caster_foreign_helpers.h. #6014

• Fixed ambiguous factory template specialization that caused compilation failures with nvcc + GCC 14. #6011

• Fixed crash in def_readwrite for non-smart-holder properties of smart-holder classes. #6008

• Fixed memory leak for py::dynamic_attr() objects on Python 3.13+ by clearing managed __dict__ contents during deallocation. #5999

• Fixed binding of noexcept and ref-qualified (&, &&) methods inherited from unregistered base classes. #5992

Internal:

• Moved tomlkit dependency to the dev dependency group. #5990

• Switched to newer public CPython APIs (PyType_GetFlags and public vectorcall APIs where available). #6005

Tests:

• Made an async callback test deterministic by replacing fixed sleep with bounded waiting. #5986

... (truncated)

Commits

• 1b49908 docs: add v3.0.3 and v3.1.0 changelog updates. (#6023)
• c066c76 fix: add missing PYBIND11_ALWAYS_INLINE macro for v3.0.3 backports
• 76efcb3 Bump version from v3.0.2 → v3.0.3
• 0f41635 chore(deps): bump pygments from 2.17.2 to 2.20.0 in /docs (#6024)
• 54a4615 chore(deps): bump requests from 2.32.4 to 2.33.0 in /docs (#6013)
• d12037c chore(deps): update pre-commit hooks (#6002)
• 64eecc4 chore(deps): bump the actions group with 3 updates (#6000)
• c0ea8fc Fix heap-buffer-overflow in pythonbuf with undersized buffers (#6019)
• 8d621d6 fix: detect virtual inheritance in add_base to prevent pointer offset crash (...
• b6a616e fix: strdup "self" arg in def_property_static, partially revert #6010 (gh...
• Additional commits viewable in compare view

Updates protobuf from 6.33.5 to 7.34.1

Release notes

Sourced from protobuf's releases.

Protocol Buffers v34.0-rc1

Announcements

• This version includes breaking changes to: C++, Objective-C, PHP, Python.
• [Bazel] Remove deprecated ProtoInfo.transitive_imports. Use equivalent transitive_sources instead (protocolbuffers/protobuf@0a5c2f6)
• [C++] Make generator headers private (protocolbuffers/protobuf@3a2af35)
• [C++] Add a debug check that the target of CopyFrom is not a descendant of the source. (protocolbuffers/protobuf@7a75898)
• [C++] Add [[nodiscard]] to many APIs. (protocolbuffers/protobuf@a70115f)
• [C++] Make the arena-enabled constructors of RepeatedField, RepeatedPtrField, and Map private. (protocolbuffers/protobuf@ef890c3)
• [C++] Remove deprecated FieldDescriptor::label() in OSS. Use is_repeated() or is_required() instead (protocolbuffers/protobuf@b76faa9)
• [C++] Removes proto2::util::MessageDifferencer::AddIgnoreCriteria that takes a raw pointer as an argument in favor of the overload that takes a unique_ptr. Remove macro PROTOBUF_FUTURE_REMOVE_ADD_IGNORE_CRITERIA (protocolbuffers/protobuf@b115358)
• [C++] Remove deprecated FieldDescriptor::has_optional_keyword() in OSS. Use is_repeated() or has_presence() instead (protocolbuffers/protobuf@68346ec)
• [C++] Remove AddUnusedImportTrackFile() and ClearUnusedImportTrackFiles(). Remove PROTOBUF_FUTURE_RENAME_ADD_UNUSED_IMPORT (protocolbuffers/protobuf@837a2cd)
• [C++] Remove deprecated FieldDescriptor::is_optional() in OSS. Use (!is_required() && !is_repeated()) instead (protocolbuffers/protobuf@9dbc5d4)
• [C++] Remove deprecated UseDeprecatedLegacyJsonFieldConflicts() (protocolbuffers/protobuf@c301c2c)
• [C++] All entity names have length limit (2afb0dc)
• [ObjC] Remove generate_minimal_imports generation option warning (protocolbuffers/protobuf@45b1297)
• [ObjC] Fix nullability annotations on some GPB*Dictionary types. (protocolbuffers/protobuf@ea67d6d)
• [ObjC] Remove -[GPBFieldDescriptor optional] (protocolbuffers/protobuf@3414dc1)
• [Other] Remove deprecated flag for enabling MSVC support (protocolbuffers/protobuf@97c979b)
• [PHP] Remove deprecated PHP APIs (protocolbuffers/protobuf@9c45014)
• [PHP] Remove deprecated PHP APIs FieldDescriptor getLabel, use IsRepeated or isRequired instead. (protocolbuffers/protobuf@4208121, protocolbuffers/protobuf@cd76e67, protocolbuffers/protobuf@4208121)
• [PHP] Add PHP typehints for setters and remove redundant GPBUtil checks (protocolbuffers/protobuf#25296) (protocolbuffers/protobuf@aee03b7)
• [PHP] support default values for editions/proto2 (protocolbuffers/protobuf#25161) (protocolbuffers/protobuf@b01099d)
• [Python] Raise errors in OSS when assign bool to int/enum field in Python Proto. (protocolbuffers/protobuf@5b116fe)
• [Python] Remove float_format/double_format from python proto text_format (protocolbuffers/protobuf@e4854a1)
• [Python] Raise TypeError when convert non-timedelta to Duration, or convert non-datetime to Timestamp in python proto. (Original code may raise ArributeError) (protocolbuffers/protobuf@00aaca1)
• [Python] Remove float_precision from python proto json_format (protocolbuffers/protobuf@f027f1f)
• [Python] Remove deprecated FieldDescriptor::label() in OSS. Use is_repeated() or is_required() instead (protocolbuffers/protobuf@b76faa9)
• [Python] Remove deprecated FieldDescriptor.label (protocolbuffers/protobuf@0a8ff55)
• [Python] Remove deprecated UseDeprecatedLegacyJsonFieldConflicts() (protocolbuffers/protobuf@c301c2c)
• Protobuf News may include additional announcements or pre-announcements for upcoming changes.
• Migration Guide may include additional guidance for breaking changes.

Bazel

• Fix: cc_toolchain should prefer protoc when prebuilt flag is flipped. (#25168) (protocolbuffers/protobuf@8c857c3)
• Breaking change: Remove deprecated ProtoInfo.transitive_imports. Use equivalent transitive_sources instead (protocolbuffers/protobuf@0a5c2f6)
• Feat(bazel): wire up prebuilt protoc toolchain (#24115) (protocolbuffers/protobuf@cc23698)
• Migrate proto_descriptor_set (#23369) (protocolbuffers/protobuf@8d4dfdd)

Compiler

• Ruby codegen: support generation of rbs files (#15633) (protocolbuffers/protobuf@6ebdf85)
• Avoid collision name problems between a message named Xyz and a direct sibling enum named XyzView (protocolbuffers/protobuf@eba53e8)
• Generalizing and implementing ValidateFeatureSupport for both Options and Features during proto parsing (protocolbuffers/protobuf@ed3c571)
• Fix a bug with custom features outside of the pb package. (protocolbuffers/protobuf@872d3ce)
• Fix import option handling when include_imports isn't set. (protocolbuffers/protobuf@9ef9e80)
• Fix a bug in STRICT check of namespaced enums to properly check for 'reserved 1 to max' (protocolbuffers/protobuf@1229d4a)
• Prevent accidental stripping of debug_redact options via import option. (protocolbuffers/protobuf@f58b098)

C++

• Add EnumerateEnumValues function. (protocolbuffers/protobuf@397d5d9)

... (truncated)

Commits

• See full diff in compare view

Updates grpcio from 1.78.0 to 1.80.0

Release notes

Sourced from grpcio's releases.

Release v1.80.0

This is release 1.80.0 (glimmering) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

• [ssl] Implement TLS private key signer in Python. (#41701)
• [TLS Credentials]: Private Key Offload Implementation. (#41606)
• Fix max sockaddr struct size on OpenBSD. (#40454)
• [core] Enable EventEngine for Python by default, and EventEngine fork support in Python and Ruby. (#41432)
• [TLS Credentials]: Create InMemoryCertificateProvider to update certificates independently. (#41484)
• [Ruby] Build/test ruby 4.0 and build native gems with Ruby 4.0 support. (#41324)
• [EventEngine] Remove an incorrect std::move in DNSServiceResolver constructor. (#41502)
• [RR and WRR] enable change to connect from a random index. (#41472)
• [xds] Implement gRFC A101. (#41051)

C++

• [C++] Add SNI override option to C++ channel credentials options API. (#41460)

C#

• [C# tools] Option to append Async to server side method names #39010. (#39797)

Objective-C

• [Fix][Compiler] Plugins fall back to the edition 2023 for older protobuf. (#41357)

PHP

• [PHP] Disable php infinite recursion check for callback from Core to PHP. (#41835)
• [PHP] Fix runtime error with PHp8.5 alpha because zend_exception_get_defaul…. (#40337)

Python

• [Python] Fix GRPC_TRACE not working when absl log initialized in cython. (#41814)
• Revert "[Python] Align GRPC_ENABLE_FORK_SUPPORT env defaults in core and python (#41455)". (#41769)
• [Python] Fix AsyncIO Server maximum_concurrent_rpcs enforcement preventing negative active_rpcs count. (#41532)
• [Python] Docs: correct grpc.Compression references. (#41705)
• [Python] [Typeguard] Part 4 - Add Typeguard to AIO stack in tests . (#40226)

... (truncated)

Commits

• f5e2d6e [Release] Bump version to 1.80.0 (on v1.80.x branch) (#41857)
• 938cfec [subchannel connection scaling] fix when we reset backoff (#41935)
• 91778be [Backport][v1.80.x][Python] New _create method for aio.Metadata (#41888)
• f10b9f2 [bzlmod] upgrade rules_swift to avoid BCR CI breakage on Windows with bazel 7...
• be4c1c5 [subchannel] fix crash in connection scaling code (#41853)
• a71df73 [Release] Bump version to 1.80.0-pre1 (on v1.80.x branch) (#41844)
• 3ca09e4 [Python] Fix GRPC_TRACE and add test to check the GRPC_TRACE logs print (#41814)
• 260c6fd [PHP] Disable php infinite recursion check for callback from Core to PHP (#41...
• 50957c5 [Flakiness] Delete flaky iomgr fd_conservation_posix_test and create an Event...
• e1e1d0a [Bzlmod] Turn off bzlmod for PSM python tests. (#41810)
• Additional commits viewable in compare view

Updates grpcio-tools from 1.78.0 to 1.80.0

Release notes

Sourced from grpcio-tools's releases.

Release v1.80.0

This is release 1.80.0 (glimmering) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

• [ssl] Implement TLS private key signer in Python. (#41701)
• [TLS Credentials]: Private Key Offload Implementation. (#41606)
• Fix max sockaddr struct size on OpenBSD. (#40454)
• [core] Enable EventEngine for Python by default, and EventEngine fork support in Python and Ruby. (#41432)
• [TLS Credentials]: Create InMemoryCertificateProvider to update certificates independently. (#41484)
• [Ruby] Build/test ruby 4.0 and build native gems with Ruby 4.0 support. (#41324)
• [EventEngine] Remove an incorrect std::move in DNSServiceResolver constructor. (#41502)
• [RR and WRR] enable change to connect from a random index. (#41472)
• [xds] Implement gRFC A101. (#41051)

C++

• [C++] Add SNI override option to C++ channel credentials options API. (#41460)

C#

• [C# tools] Option to append Async to server side method names #39010. (#39797)

Objective-C

• [Fix][Compiler] Plugins fall back to the edition 2023 for older protobuf. (#41357)

PHP

• [PHP] Disable php infinite recursion check for callback from Core to PHP. (#41835)
• [PHP] Fix runtime error with PHp8.5 alpha because zend_exception_get_defaul…. (#40337)

Python

• [Python] Fix GRPC_TRACE not working when absl log initialized in cython. (#41814)
• Revert "[Python] Align GRPC_ENABLE_FORK_SUPPORT env defaults in core and python (#41455)". (#41769)
• [Python] Fix AsyncIO Server maximum_concurrent_rpcs enforcement preventing negative active_rpcs count. (#41532)
• [Python] Docs: correct grpc.Compression references. (#41705)
• [Python] [Typeguard] Part 4 - Add Typeguard to AIO stack in tests . (#40226)

... (truncated)

Commits

• f5e2d6e [Release] Bump version to 1.80.0 (on v1.80.x branch) (#41857)
• a71df73 [Release] Bump version to 1.80.0-pre1 (on v1.80.x branch) (#41844)
• 1299baa [Python] Add language features to exported proto files (#41501)
• 522dbbb [Release] Bump version to 1.79.0-dev (on master branch) (#41291)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dependencies, maintenance. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.