Bump the dev-dependencies group across 1 directory with 4 updates

[dependabot]

Updates the requirements on ophyd-async, databroker[client], matplotlib and tiled to permit the latest version.
Updates ophyd-async from 0.4.0 to 0.5.0

Release notes

Sourced from ophyd-async's releases.

v0.5.0

What's Changed

• Fix motor run up distance by @​olliesilvester in bluesky/ophyd-async#455
• Set motor to start max velocity at start by @​subinsaji in bluesky/ophyd-async#464
• Restructure repository to solidify public interface and document it by @​coretl in bluesky/ophyd-async#26
• Restructure on ADR 2.0 by @​abbiemery in bluesky/ophyd-async#467

Full Changelog: bluesky/ophyd-async@v0.4.0...v0.5.0

Commits

• 9c99913 Restructure ophyd-async (#467)
• af9c780 Document ADR for restructuring repository (#26)
• ef1c942 Set motor to start max velocity at start (#464)
• 8a9b9ac Fix motor run up distance (#455)
• See full diff in compare view

Updates databroker[client] from 2.0.0b17 to 2.0.0b46

Release notes

Sourced from databroker[client]'s releases.

Add mongoquery as a server dependency

This addresses a bug caught in production, where the databroker container image is missing this dependency. It comes up in situations when a ScanID is mixed with other query types.

What's Changed

• Add mongoquery as a server dep. by @​danielballan in bluesky/databroker#816

Full Changelog: bluesky/databroker@v2.0.0b45...v2.0.0b46

v2.0.0b45

Bug fix for numpy 2.0

v2.0.0b44

Bump version of Tiled to v0.1.0b4, the first release to support Numpy 2.0.

v2.0.0b43

No release notes provided.

v2.0.0b42

No release notes provided.

v2.0.0b41

No release notes provided.

v2.0.0b40

No release notes provided.

v2.0.0b39

No release notes provided.

v2.0.0b38

No release notes provided.

v2.0.0b37

No release notes provided.

v2.0.0b36

• Bump minimum version of suitcase-mongo to support updating descriptor and stop documents from Tiled client

v2.0.0b35

• Support updating 'stop' and 'descriptor' documents via the Tiled client.
• Bump minimum Tiled version.

v2.0.0b34

v2.0.0b33

No release notes provided.

v2.0.0b32

No release notes provided.

... (truncated)

Commits

• 20603d4 Merge pull request #816 from danielballan/missing-mongoquery-server-dep
• 035318f Add mongoquery as a server dep.
• 8aa5b2f REL: v2.0.0b45
• 0c814bc Merge pull request #815 from danielballan/numpy-2-fix
• 90d69da Fix numpy.product -> numpy.prod for numpy 2.0
• 41537cc TST: Exercise codepath with numpy.product call
• 43a742e REL: v2.0.0b44
• 26974c9 Merge pull request #813 from danielballan/numpy2
• 1911cf2 Bump tiled to min version supporting numpy 2.0
• 6a1e54a REL: v2.0.0b43
• Additional commits viewable in compare view

Updates matplotlib to 3.9.2

Release notes

Sourced from matplotlib's releases.

REL: 3.9.2

This is the second bugfix release of the 3.9.x series.

This release contains several bug-fixes and adjustments:

• Be more resilient to I/O failures when writing font cache
• Fix nondeterministic behavior with subplot spacing and constrained layout
• Fix sticky edge tolerance relative to data range
• Improve formatting of image values in cases of singular norms

Windows wheels now bundle the MSVC runtime DLL statically to avoid inconsistencies with other wheels and random crashes depending on import order.

Commits

• a254b68 REL: 3.9.2
• 056f307 DOC: Create release notes for 3.9.2
• 8d867ce Merge branch 'v3.9.1-doc' into v3.9.x
• 7be8675 Merge pull request #28687 from QuLogic/static-msvc
• 3ed3d7b Merge pull request #28695 from meeseeksmachine/auto-backport-of-pr-27797-on-v...
• 8a62afa BLD: Include MSVCP140 runtime statically
• 81be26f Merge pull request #28688 from QuLogic/auto-backport-of-pr-28668-on-v3.9.x
• d88a582 Backport PR #27797: DOC: Use video files for saving animations
• e3159ba Merge pull request #28692 from meeseeksmachine/auto-backport-of-pr-28632-on-v...
• 465401e Backport PR #28632: DOC: Tell sphinx-gallery to link mpl_toolkits from our build
• Additional commits viewable in compare view

Updates tiled from 0.1.0a91 to 0.1.0b6

Release notes

Sourced from tiled's releases.

💉 Add OCI standard container health checks to run Tiled on Kubernetes

What's Changed

• Fix bug with pickling Context by @​danielballan in bluesky/tiled#768
• 💉 Add health check for hosting containerized tiled instances by @​Kezzsim in bluesky/tiled#770

Full Changelog: bluesky/tiled@v0.1.0b5...v0.1.0b6

v0.1.0b5

Added

• Support partial download of an asset using the HTTP Range Header.

Fixed

• When authenticated as a Service Principal, display the SP's uuid in the client Context repr.
• The dependency json-merge-patch, introduced in v0.1.0b4, was missing from some pip selectors.

v0.1.0b4

Changed

• Minor implementation changes were necessary to make Tiled compatible with Numpy 2.0.
• For improved security, the server-side array slicing function has been refactored to avoid using eval(). To be clear: there were no known exploitable vulnerabilities in the eval() approach. The input was validated against a regular expression before being passed to eval(). However, avoiding eval() altogether is better practice for defense-in-depth against potential code injection attacks due to current or future bugs in Tiled or its upstream dependencies.

v0.1.0b3

Added

• Added a new HTTP endpoint, PATCH /api/v1/metadata/{path} supporting modifying existing metadata using a application/json-patch+json or a application/merge-patch+json patch.
• Added client-side methods for replacing, updating (similar to dict.update()), and patching metadata.

Fixed

• Fixed regression introduced in the previous release (v0.1.0b1) where exceptions raised in the server sent no response instead of properly sending a 500 response. (This presents in the client as, "Server disconnected without sending a response.") A test now protects against this class of regression.

v0.1.0b2

Changed

... (truncated)

Changelog

Sourced from tiled's changelog.

Changelog

Unreleased

Added

• Add method to TableAdapter which accepts a Python dictionary.
• Added an Arrow adapter which supports reading/writing arrow tables via RecordBatchFileReader/RecordBatchFileWriter.

Changed

• Make tiled.client accept a Python dictionary when fed to write_dataframe().
• The generated_minimal example no longer requires pandas and instead uses a Python dict.
• Remove unused pytest-warning ignores from test_writing.py.
• Rename argument in hdf5_lookup function from path to dataset to reflect change in ophyd_async

Fixed

• A bug in Context.__getstate__ caused picking to fail if applied twice.

v0.1.0b5 (2024-06-27)

Added

• Support partial download of an asset using the HTTP Range Header.

Fixed

• When authenticated as a Service Principal, display the SP's uuid in the client Context repr.
• The dependency json-merge-patch, introduced in v0.1.0b4, was missing from some pip selectors.

v0.1.0b4 (2024-06-18)

Changed

• Minor implementation changes were necessary to make Tiled compatible with Numpy 2.0.
• For improved security, the server-side array slicing function has been refactored to avoid using eval(). To be clear: there were no known exploitable vulnerabilities in the eval() approach. The input was validated against a regular expression before being passed to eval(). However, avoiding eval() altogether is better practice for defense-in-depth against potential code injection attacks due to current or future bugs in Tiled or its upstream dependencies.

v0.1.0b3 (2024-06-04)

Added

... (truncated)

Commits

• 2e392d6 Merge pull request #770 from Kezzsim/pod_health
• 3a42a2d 🚑️ Finish by making a test for the healthcheck
• ee1b00e 💊 Add the /healthz route standard to fastAPI
• 9398939 Merge pull request #768 from danielballan/test-double-pickle
• 22c217b Update CHANGELOG
• 9df2994 Fix missed aspects of getstate.
• 42ce065 Test pickling twice.
• 356dbab Retroactively update heading on CHANGELOG
• 07c8925 REL: v0.1.0b5
• 1e94f4d Range requests (#762)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #35.