Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the production-dependencies group with 2 updates #1149

Merged
merged 1 commit into from
Feb 24, 2025
Merged

chore(deps): bump the production-dependencies group with 2 updates #1149

merged 1 commit into from
Feb 24, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 24, 2025

Bumps the production-dependencies group with 2 updates: bentoml and openai.

Updates bentoml from 1.4.0a2 to 1.4.0

Release notes

Sourced from bentoml's releases.

v1.4.0

We are thrilled to announce the release of BentoML 1.4! This version introduces several new features and improvements to accelerate your iteration cycle and enhance the overall developer experience.

Below are the key highlights of 1.4, and you can find more details in the release blog post.

🚀 20x faster iteration with Codespaces

  • Introduced BentoML Codespaces, a development platform built on BentoCloud
  • Added the bentoml code command for creating a Codespace
  • Auto-sync of local changes to the cloud environment
  • Access to a variety of powerful cloud GPUs
  • Real-time logs and debugging through the cloud dashboard
  • Eliminate dependency headaches and ensure consistency between dev and prod environments

🐍 New Python SDK for runtime configurations

  • Added bentoml.images.PythonImage for defining the Bento runtime environment in Python instead of using bentofile.yaml or pyproject.toml
  • Support customizing runtime configurations (e.g., Python version, system packages, and dependencies) directly in the service.py file
  • Introduced context-sensitive run() method for running custom build commands
  • Backward compatible with existing bentofile.yaml and pyproject.toml configurations

⚡ Accelerated model loading with safetensors

  • Implemented build-time model downloads and parallel loading of model weights using safetensors to reduce cold start time and improve scaling performance. See the documentation to learn more.
  • Added bentoml.models.HuggingFaceModel for loading models from HF. It supports private model repositories and custom endpoints
  • Added bentoml.models.BentoModel for loading models from BentoCloud and the Model Store

🌍 External deployment dependencies

  • Extended bentoml.depends() to support external deployments
  • Added support for calling BentoCloud Deployments via name or URL
  • Added support for calling self-hosted HTTP AI services outside BentoCloud

⚠️ Legacy Service API deprecation

  • The legacy bentoml.Service API (with runners) is now officially deprecated and is scheduled for removal in a future release. We recommend you use the @bentoml.service decorator.

Note that:

  • 1.4 remains fully compatible with Bentos created by 1.3.
  • The BentoML documentation has been updated with examples and guides for 1.4.

🙏 As always, we appreciate your continued support!

What's Changed

... (truncated)

Commits
  • ba7c145 fix: add files under env/docker (#5234)
  • 239b10b docs: Update docs to use new runtime API (#5177)
  • 1937106 docs: add environment variable authentication documentation (#5231)
  • bf56762 docs: update links to examples (#5224)
  • fdf681f fix: always add bentoml req unless it is specified as a url dependency (#5225)
  • e4b1adc feat(metrics): extend histogram buckets to support LLM latencies (#5222)
  • 61c1cb4 fix: don't restore model store after importing service (#5223)
  • 2cf65bf fix: input data validation for root input (#5221)
  • 7c9a3e5 fix: gradio error when uploading file (#5220)
  • 6c0c4bb feat: support root input spec using positonal-only argument (#5217)
  • Additional commits viewable in compare view

Updates openai from 1.63.0 to 1.64.0

Release notes

Sourced from openai's releases.

v1.64.0

1.64.0 (2025-02-22)

Full Changelog: v1.63.2...v1.64.0

Features

Bug Fixes

  • client: mark some request bodies as optional (4451f56)

Chores

v1.63.2

1.63.2 (2025-02-17)

Full Changelog: v1.63.1...v1.63.2

Chores

v1.63.1

1.63.1 (2025-02-17)

Full Changelog: v1.63.0...v1.63.1

Chores

Changelog

Sourced from openai's changelog.

1.64.0 (2025-02-22)

Full Changelog: v1.63.2...v1.64.0

Features

Bug Fixes

  • client: mark some request bodies as optional (4451f56)

Chores

1.63.2 (2025-02-17)

Full Changelog: v1.63.1...v1.63.2

Chores

1.63.1 (2025-02-17)

Full Changelog: v1.63.0...v1.63.1

Chores

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the production-dependencies group with 2 updates
0e3c9d8 
Bumps the production-dependencies group with 2 updates: [bentoml](https://github.com/bentoml/bentoml) and [openai](https://github.com/openai/openai-python).


Updates `bentoml` from 1.4.0a2 to 1.4.0
- [Release notes](https://github.com/bentoml/bentoml/releases)
- [Commits](bentoml/BentoML@v1.4.0a2...v1.4.0)

Updates `openai` from 1.63.0 to 1.64.0
- [Release notes](https://github.com/openai/openai-python/releases)
- [Changelog](https://github.com/openai/openai-python/blob/main/CHANGELOG.md)
- [Commits](openai/openai-python@v1.63.0...v1.64.0)

---
updated-dependencies:
- dependency-name: bentoml
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: openai
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from aarnphm as a code owner February 24, 2025 07:54
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Feb 24, 2025
@github-actions github-actions bot merged commit 476a531 into main Feb 24, 2025
2 of 3 checks passed
@github-actions github-actions bot deleted the dependabot/pip/production-dependencies-cc67dacb23 branch February 24, 2025 07:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aarnphm aarnphm Awaiting requested review from aarnphm aarnphm is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants