Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): bump the langchain group across 1 directory with 8 updates #999

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 13, 2024

Bumps the langchain group with 8 updates in the / directory:

Package From To
langchain 0.2.16 0.2.17
langchain-mistralai 0.1.7 0.1.13
langchain-google-vertexai 1.0.4 1.0.10
langchain-openai 0.1.7 0.1.25
langchain-anthropic 0.1.13 0.1.22
langchain-groq 0.1.5 0.1.10
langchain-aws 0.1.17 0.1.18
langchain-community 0.2.16 0.2.19

Updates langchain from 0.2.16 to 0.2.17

Release notes

Sourced from langchain's releases.

langchain-community==0.2.17

Changes since langchain-community==0.2.16

community[patch]: Release 0.2.17 (#26432) community, openai: support nested dicts (#26414) core[minor]: Remove serialized manifest from tracing requests for non-llm runs (#26270) community: Add docstring for HtmlLinkExtractor (#26213) community: Add docstring for GLiNERLinkExtractor (#26218) community: Add docstring for KeybertLinkExtractor (#26210) Add session expired retry to neo4j graph (#26182) Adding bind_tools in ChatOctoAI (#26168) infra: Clear cache for env-var checks (#26073) fmt fmt fmt Improvement[Community] Improve args description in api doc of DocArrayInMemorySearch (#26024) community: delta in openai choice can be None, creates handler for that (#25954)

langchain==0.2.17

Changes since langchain==0.3.7

langchain,community[patch]: release with bumped core (#27854)

Commits

Updates langchain-mistralai from 0.1.7 to 0.1.13

Commits

Updates langchain-google-vertexai from 1.0.4 to 1.0.10

Release notes

Sourced from langchain-google-vertexai's releases.

libs/genai/v1.0.10

What's Changed

New Contributors

Full Changelog: langchain-ai/langchain-google@libs/genai/v1.0.9...libs/genai/v1.0.10

libs/vertexai/v1.0.10

What's Changed

Full Changelog: langchain-ai/langchain-google@libs/community/v1.0.8...libs/vertexai/v1.0.10

libs/genai/v1.0.9

What's Changed

New Contributors

... (truncated)

Commits

Updates langchain-openai from 0.1.7 to 0.1.25

Release notes

Sourced from langchain-openai's releases.

langchain-openai==0.1.25

Changes since langchain-openai==0.1.24

openai[patch]: Release 0.1.25 (#26439) openai[patch]: get output_type when using with_structured_output (#26307)

langchain-openai==0.1.24

Changes since langchain-openai==0.1.23

partners/openai: release 0.1.24 (#26417) community, openai: support nested dicts (#26414) fmt standard-tests[patch]: add Ser/Des test langchain_openai: Make sure the response from the async client in the astream method of ChatOpenAI is properly awaited in case of "include_response_headers=True" (#26031) openai[patch]: add back azure embeddings api_version alias openai[patch]: Upgrade @​root_validators in preparation for pydantic 2 migration (#25491) standard-tests[patch]: test init from env vars (#25983) docs: ChatOpenAI.with_structured_output nits (#25952) langchain_openai: Cleanup OpenAIEmbeddings validate_environment. (#25855)

Commits

Updates langchain-anthropic from 0.1.13 to 0.1.22

Commits
  • c776471 community: fix AttributeError: 'YandexGPT' object has no attribute '_grpc_met...
  • 752a71b integrations[patch]: release model packages (#24900)
  • 1213a59 docs[patch]: Update kv store docs pages (#24848)
  • 17a06cb infra: check templates based on integration (#24857)
  • a7380dd cli: release 0.0.28 (#24852)
  • e98e4be cli: register new integration doc templates (#24854)
  • 210623b core[minor]: Add support for pydantic 2 to utility to get fields (#24899)
  • 7d16940 core[patch]: Release 0.2.26 (#24898)
  • add1611 community[patch]: Make the pydantic linter stricter (#24897)
  • a4a444f community[patch]: Fix arcee llm usage of root_validator(pre=False) (#24896)
  • Additional commits viewable in compare view

Updates langchain-groq from 0.1.5 to 0.1.10

Commits
  • c0dd293 partners/groq: release 0.1.10 (#26393)
  • 54c8508 groq: add back streaming tool calls (#26391)
  • 396c0ae docs: Adding LC Academy links (#26164)
  • feb3517 core[patch]: fix empty OpenAI tools when strict=True (#26287)
  • d87feb1 [Docs] Correct the admonition explaining min langchain-anthropic version in d...
  • 398718e core[patch]: fix regression in convert_to_openai_tool with instances of Tool ...
  • 7feae62 core[patch]: Support non ASCII characters in tool output if user doesn't outp...
  • b993172 Keyword-like runnable config (#26295)
  • 17659ca core[patch]: Release 0.2.39 (#26279)
  • 212c688 core[minor]: Remove serialized manifest from tracing requests for non-llm run...
  • Additional commits viewable in compare view

Updates langchain-aws from 0.1.17 to 0.1.18

Release notes

Sourced from langchain-aws's releases.

v0.1.18

What's Changed

Full Changelog: langchain-ai/langchain-aws@v0.1.17...v0.1.18

Commits
  • fc72065 infra[patch]: fix release workflow (#191)
  • 644de0b infra[patch]: support dev + rc releases (#190)
  • feb8f09 Update pyproject.toml to v0.1.18 (#189)
  • 4aebf17 Fixes get provider for model_ids with region prefix. Added unit tests. (#184)
  • 533effb aws[patch]: backward-compatible pydantic v2 changes (#180)
  • d89fcf8 Updating README to include support for Bedrock Agents (#166)
  • See full diff in compare view

Updates langchain-community from 0.2.16 to 0.2.19

Release notes

Sourced from langchain-community's releases.

langchain-community==0.2.19

Changes since langchain-community==0.3.6

community: release 0.2.19 (#28057) community: patch graphqa chains (CVE-2024-8309) (#28050) langchain,community[patch]: release with bumped core (#27854) Added mapping to fix CI for #langchain-aws:227. (#27114) community: poetry lock for cffi dep (#26674)

langchain-community==0.2.18

Changes since langchain-community==0.3.5

langchain,community[patch]: release with bumped core (#27854) Added mapping to fix CI for #langchain-aws:227. (#27114) community: poetry lock for cffi dep (#26674)

langchain-community==0.2.17

Changes since langchain-community==0.2.16

community[patch]: Release 0.2.17 (#26432) community, openai: support nested dicts (#26414) core[minor]: Remove serialized manifest from tracing requests for non-llm runs (#26270) community: Add docstring for HtmlLinkExtractor (#26213) community: Add docstring for GLiNERLinkExtractor (#26218) community: Add docstring for KeybertLinkExtractor (#26210) Add session expired retry to neo4j graph (#26182) Adding bind_tools in ChatOctoAI (#26168) infra: Clear cache for env-var checks (#26073) fmt fmt fmt Improvement[Community] Improve args description in api doc of DocArrayInMemorySearch (#26024) community: delta in openai choice can be None, creates handler for that (#25954)

Commits

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 13, 2024
@github-actions github-actions bot enabled auto-merge (squash) November 13, 2024 05:56
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

This pull request updates multiple langchain-related package dependencies in pyproject.toml. Here's a summary of the key changes:

  • Updates 8 langchain packages including langchain, langchain-mistralai, langchain-google-vertexai, langchain-openai, langchain-anthropic, langchain-groq, langchain-aws, and langchain-community to their latest versions
  • Adds support for Claude 3 models in langchain-anthropic package
  • Improves error handling and metadata parsing across multiple packages
  • Adds support for image inputs in langchain-anthropic
  • Fixes GraphQA chain security vulnerability in langchain-community

The changes are non-breaking dependency updates that maintain compatibility while enabling access to new features and security fixes.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from 4eb287e to 296be2a Compare November 13, 2024 21:26
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

This PR continues updating langchain-related dependencies with several important changes. Here's a focused summary of the latest updates:

Updates langchain packages in pyproject.toml with significant changes:

  • Adds multimodal support and Claude 3 model integration in langchain-anthropic
  • Patches GraphQA chains security vulnerability (CVE-2024-8309) in langchain-community
  • Improves error handling for server quota and metadata parsing
  • Adds support for session-level feedback in evaluation features

The changes maintain backward compatibility while adding important security fixes and new capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from 296be2a to a1bae43 Compare November 13, 2024 22:06
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

This PR continues updating langchain-related dependencies with a focus on the latest changes. Here's a concise summary of the key updates:

  • Adds support for Claude 3 models and multimodal capabilities in langchain-anthropic package
  • Fixes critical security vulnerability CVE-2024-8309 in langchain-community GraphQA chains
  • Improves error handling for server quota management and metadata parsing
  • Adds support for image inputs in langchain-anthropic package
  • Implements session-level feedback functionality in evaluation features

The changes are non-breaking updates that enhance security and functionality while maintaining backward compatibility.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from a1bae43 to cb3d702 Compare November 16, 2024 14:32
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

This PR updates multiple langchain-related dependencies in pyproject.toml with several key changes:

  • Patches critical security vulnerability CVE-2024-8309 in langchain-community GraphQA chains
  • Adds Claude 3 model support with multimodal capabilities in langchain-anthropic
  • Improves server quota error handling and metadata parsing across packages
  • Updates 8 langchain packages including core, mistralai, google-vertexai, openai, anthropic, groq, aws and community

The changes are non-breaking updates focused on security fixes and new model capabilities while maintaining backward compatibility.

Key points:

  • Critical security fix for GraphQA chains vulnerability
  • Support for Claude 3 models and multimodal inputs
  • Improved error handling for server quotas
  • Streamlined metadata parsing and management

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from cb3d702 to 017b3a2 Compare November 18, 2024 15:36
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

This PR updates multiple langchain-related packages with a focus on the latest changes. Here's a concise summary of the new updates:

  • Adds support for image inputs and model type strings in langchain-anthropic package
  • Implements session-level feedback and RAPTOR evaluation features in langchain core
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai
  • Improves error handling for server quota management and metadata parsing

The changes are non-breaking updates that enhance functionality while maintaining backward compatibility.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from 017b3a2 to 2f4f36f Compare November 19, 2024 05:30
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

This PR updates multiple langchain-related dependencies with significant new features and security improvements. Here's a focused summary of the latest changes:

  • Adds support for Claude 3 models and image inputs in langchain-anthropic package
  • Implements RAPTOR evaluation and session-level feedback in langchain core
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai
  • Patches critical security vulnerability CVE-2024-8309 in langchain-community GraphQA chains
  • Improves server quota error handling and metadata parsing across packages

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

2 similar comments
@maxdeichmann
Copy link
Member

@dependabot rebase

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from 2f4f36f to df2ed86 Compare November 20, 2024 09:09
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the key updates:

Updates multiple langchain packages in pyproject.toml with critical security and feature enhancements:

  • Patches critical security vulnerability CVE-2024-8309 in langchain-community GraphQA chains
  • Adds Claude 3 model support with multimodal capabilities in langchain-anthropic
  • Implements RAPTOR evaluation and session-level feedback in langchain core
  • Improves server quota error handling and metadata parsing across packages
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from df2ed86 to f12ca32 Compare November 20, 2024 13:14
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the new updates in this PR:

Updates multiple langchain packages in pyproject.toml with significant changes:

  • Adds support for Claude 3 model type strings and multimodal capabilities in langchain-anthropic
  • Fixes server quota error handling and metadata parsing in langchain-google-vertexai
  • Adds support for image inputs and model type strings in langchain-anthropic
  • Implements session-level feedback and RAPTOR evaluation features in langchain core
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai

The changes are non-breaking updates focused on new model capabilities and improved error handling while maintaining backward compatibility.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from f12ca32 to 058ff2c Compare November 20, 2024 14:20
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the new updates:

Updates langchain-related packages in pyproject.toml with significant changes:

  • Adds support for Claude 3 model type strings and multimodal capabilities in langchain-anthropic 0.1.22
  • Implements session-level feedback and RAPTOR evaluation features in langchain 0.1.11
  • Fixes server quota error handling and metadata parsing in langchain-google-vertexai 1.0.10
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai
  • Patches critical security vulnerability CVE-2024-8309 in langchain-community 0.2.19

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from 058ff2c to f4f1096 Compare November 25, 2024 10:52
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the new updates:

Updates langchain packages in pyproject.toml with critical security and feature enhancements:

  • Patches GraphQA chains security vulnerability (CVE-2024-8309) in langchain-community 0.2.19
  • Adds Claude 3 model support with multimodal capabilities in langchain-anthropic 0.1.22
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai 1.0.10
  • Implements session-level feedback and RAPTOR evaluation in langchain 0.1.11
  • Improves server quota error handling across multiple packages

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from f4f1096 to 4b5fdda Compare November 25, 2024 18:48
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the key new updates:

Updates langchain packages in pyproject.toml with significant changes:

  • Adds support for Claude 3 model type strings and multimodal capabilities in langchain-anthropic 0.1.25
  • Implements session-level feedback and RAPTOR evaluation in langchain 0.1.11
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai 1.0.10
  • Patches critical security vulnerability CVE-2024-8309 in langchain-community 0.2.19
  • Improves server quota error handling and metadata parsing across packages

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from 4b5fdda to d8c1f2f Compare November 26, 2024 17:17
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the new updates:

Updates langchain packages in pyproject.toml with significant changes:

  • Adds support for Claude 3 model type strings and multimodal capabilities in langchain-anthropic 0.1.25
  • Patches critical security vulnerability CVE-2024-8309 in langchain-community 0.2.19
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai 1.0.10
  • Implements session-level feedback and RAPTOR evaluation in langchain 0.1.11
  • Improves server quota error handling and metadata parsing across packages

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from d8c1f2f to d5f75ca Compare November 27, 2024 08:50
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the key new updates:

Updates multiple langchain packages in pyproject.toml with critical security and feature enhancements:

  • Patches GraphQA chains security vulnerability (CVE-2024-8309) in langchain-community 0.2.19
  • Adds Claude 3 model support with multimodal capabilities in langchain-anthropic 0.1.25
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai 1.0.10
  • Implements session-level feedback and RAPTOR evaluation in langchain 0.1.11
  • Improves server quota error handling and metadata parsing across packages

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from d5f75ca to d6fe919 Compare November 27, 2024 09:02
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the key new updates:

Updates multiple langchain packages in pyproject.toml with critical security and feature enhancements:

  • Patches critical security vulnerability CVE-2024-8309 in langchain-community 0.2.19 for GraphQA chains
  • Adds support for Claude 3 model type strings and multimodal capabilities in langchain-anthropic 0.1.25
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai 1.0.10
  • Implements session-level feedback and RAPTOR evaluation in langchain 0.1.11
  • Improves server quota error handling and metadata parsing across packages

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

Bumps the langchain group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [langchain](https://github.com/langchain-ai/langchain) | `0.2.16` | `0.2.17` |
| [langchain-mistralai](https://github.com/langchain-ai/langchain) | `0.1.7` | `0.1.13` |
| [langchain-google-vertexai](https://github.com/langchain-ai/langchain-google) | `1.0.4` | `1.0.10` |
| [langchain-openai](https://github.com/langchain-ai/langchain) | `0.1.7` | `0.1.25` |
| [langchain-anthropic](https://github.com/langchain-ai/langchain) | `0.1.13` | `0.1.22` |
| [langchain-groq](https://github.com/langchain-ai/langchain) | `0.1.5` | `0.1.10` |
| [langchain-aws](https://github.com/langchain-ai/langchain-aws) | `0.1.17` | `0.1.18` |
| [langchain-community](https://github.com/langchain-ai/langchain) | `0.2.16` | `0.2.19` |



Updates `langchain` from 0.2.16 to 0.2.17
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain==0.2.16...langchain==0.2.17)

Updates `langchain-mistralai` from 0.1.7 to 0.1.13
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-mistralai==0.1.7...langchain-mistralai==0.1.13)

Updates `langchain-google-vertexai` from 1.0.4 to 1.0.10
- [Release notes](https://github.com/langchain-ai/langchain-google/releases)
- [Commits](langchain-ai/langchain-google@libs/genai/v1.0.4...libs/genai/v1.0.10)

Updates `langchain-openai` from 0.1.7 to 0.1.25
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-openai==0.1.7...langchain-openai==0.1.25)

Updates `langchain-anthropic` from 0.1.13 to 0.1.22
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-anthropic==0.1.13...langchain-anthropic==0.1.22)

Updates `langchain-groq` from 0.1.5 to 0.1.10
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-groq==0.1.5...langchain-groq==0.1.10)

Updates `langchain-aws` from 0.1.17 to 0.1.18
- [Release notes](https://github.com/langchain-ai/langchain-aws/releases)
- [Commits](langchain-ai/langchain-aws@v0.1.17...v0.1.18)

Updates `langchain-community` from 0.2.16 to 0.2.19
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-community==0.2.16...langchain-community==0.2.19)

---
updated-dependencies:
- dependency-name: langchain
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: langchain-mistralai
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: langchain-google-vertexai
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: langchain-openai
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: langchain-anthropic
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: langchain-groq
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: langchain-aws
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: langchain
- dependency-name: langchain-community
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: langchain
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/pip/langchain-223f804694 branch from d6fe919 to 4b8f672 Compare November 27, 2024 12:55
Copy link

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Disclaimer: Experimental PR review

PR Summary

Based on the latest changes, here's a focused summary of the key new updates:

Updates multiple langchain packages in pyproject.toml with critical security and feature enhancements:

  • Patches critical security vulnerability CVE-2024-8309 in langchain-community 0.2.19 for GraphQA chains
  • Adds support for Claude 3 model type strings and multimodal capabilities in langchain-anthropic 0.1.25
  • Adds support for mistral and llama MAAS models in langchain-google-vertexai 1.0.10
  • Implements session-level feedback and RAPTOR evaluation in langchain 0.1.11
  • Improves server quota error handling and metadata parsing across packages

The changes maintain backward compatibility while adding important security fixes and new model capabilities.

1 file(s) reviewed, no comment(s)
Edit PR Review Bot Settings | Greptile

@maxdeichmann
Copy link
Member

@dependabot rebase

Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 28, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Nov 28, 2024
auto-merge was automatically disabled November 28, 2024 13:47

Pull request was closed

@dependabot dependabot bot deleted the dependabot/pip/langchain-223f804694 branch November 28, 2024 13:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant