dependabot[bot] opened a new pull request, #15: URL: https://github.com/apache/beam-starter-python/pull/15
Bumps [apache-beam](https://github.com/apache/beam) from 2.42.0 to 2.45.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/apache/beam/releases";>apache-beam's releases</a>.</em></p> <blockquote> <h2>Beam 2.45.0 release</h2> <p>We are happy to present the new 2.45.0 release of Beam. This release includes both improvements and new functionality. See the <a href="https://beam.apache.org/get-started/downloads/#2430-2023-01-13";>download page</a> for this release.</p> <p>For more information on changes in 2.45.0, check out the <a href="https://github.com/apache/beam/milestone/8?closed=1";>detailed release notes</a>.</p> <h2>I/Os</h2> <ul> <li>MongoDB IO connector added (Go) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24575";>#24575</a>).</li> </ul> <h2>New Features / Improvements</h2> <ul> <li>RunInference Wrapper with Sklearn Model Handler support added in Go SDK (<a href="https://github-redirect.dependabot.com/apache/beam/issues/23382";>#24497</a>).</li> <li>Adding override of allowed TLS algorithms (Java), now maintaining the disabled/legacy algorithms present in 2.43.0 (up to 1.8.0_342, 11.0.16, 17.0.2 for respective Java versions). This is accompanied by an explicit re-enabling of TLSv1 and TLSv1.1 for Java 8 and Java 11.</li> <li>Add UDF metrics support for Samza portable mode.</li> </ul> <h2>Breaking Changes</h2> <ul> <li>Portable Java pipelines, Go pipelines, Python streaming pipelines, and portable Python batch pipelines on Dataflow are required to use Runner V2. The <code>disable_runner_v2</code>, <code>disable_runner_v2_until_2023</code>, <code>disable_prime_runner_v2</code> experiments will raise an error during pipeline construction. You can no longer specify the Dataflow worker jar override. Note that non-portable Java jobs and non-portable Python batch jobs are not impacted. (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24515";>#24515</a>).</li> </ul> <h2>Bugfixes</h2> <ul> <li>Avoids Cassandra syntax error when user-defined query has no where clause in it (Java) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24829";>#24829</a>).</li> <li>Fixed JDBC connection failures (Java) during handshake due to deprecated TLSv1(.1) protocol for the JDK. (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24623";>#24623</a>)</li> <li>Fixed Python BigQuery Batch Load write may truncate valid data when deposition sets to WRITE_TRUNCATE and incoming data is large (Python) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24535";>#24623</a>).</li> <li>Fixed Kafka watermark issue with sparse data on many partitions (<a href="https://github-redirect.dependabot.com/apache/beam/pull/24205";>#24205</a>)</li> </ul> <h2>List of Contributors</h2> <p>According to git shortlog, the following people contributed to the 2.45.0 release. Thank you to all contributors!</p> <p>AdalbertMemSQL</p> <p>Ahmed Abualsaud</p> <p>Ahmet Altay</p> <p>Alexey Romanenko</p> <p>Anand Inguva</p> <p>Andrea Nardelli</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/apache/beam/blob/master/CHANGES.md";>apache-beam's changelog</a>.</em></p> <blockquote> <h1>[2.45.0] - 2023-02-15</h1> <h2>Highlights</h2> <ul> <li>New highly anticipated feature X added to Python SDK (<a href="https://github.com/apache/beam/issues/X";>#X</a>).</li> <li>New highly anticipated feature Y added to Java SDK (<a href="https://github.com/apache/beam/issues/Y";>#Y</a>).</li> </ul> <h2>I/Os</h2> <ul> <li>Support for X source added (Java/Python) (<a href="https://github.com/apache/beam/issues/X";>#X</a>).</li> <li>MongoDB IO connector added (Go) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24575";>#24575</a>).</li> </ul> <h2>New Features / Improvements</h2> <ul> <li>RunInference Wrapper with Sklearn Model Handler support added in Go SDK (<a href="https://github-redirect.dependabot.com/apache/beam/issues/23382";>#24497</a>).</li> <li>Adding override of allowed TLS algorithms (Java), now maintaining the disabled/legacy algorithms present in 2.43.0 (up to 1.8.0_342, 11.0.16, 17.0.2 for respective Java versions). This is accompanied by an explicit re-enabling of TLSv1 and TLSv1.1 for Java 8 and Java 11.</li> <li>Add UDF metrics support for Samza portable mode.</li> </ul> <h2>Breaking Changes</h2> <ul> <li>Portable Java pipelines, Go pipelines, Python streaming pipelines, and portable Python batch pipelines on Dataflow are required to use Runner V2. The <code>disable_runner_v2</code>, <code>disable_runner_v2_until_2023</code>, <code>disable_prime_runner_v2</code> experiments will raise an error during pipeline construction. You can no longer specify the Dataflow worker jar override. Note that non-portable Java jobs and non-portable Python batch jobs are not impacted. (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24515";>#24515</a>).</li> <li>Beam now requires <code>pyarrow>=3</code> and <code>pandas>=1.4.3</code> since older versions are not compatible with <code>numpy==1.24.0</code>.</li> </ul> <h2>Bugfixes</h2> <ul> <li>Avoids Cassandra syntax error when user-defined query has no where clause in it (Java) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24829";>#24829</a>).</li> <li>Fixed JDBC connection failures (Java) during handshake due to deprecated TLSv1(.1) protocol for the JDK. (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24623";>#24623</a>)</li> <li>Fixed Python BigQuery Batch Load write may truncate valid data when deposition sets to WRITE_TRUNCATE and incoming data is large (Python) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24535";>#24623</a>).</li> </ul> <h1>[2.44.0] - 2023-01-12</h1> <h2>Highlights</h2> <ul> <li>New highly anticipated feature X added to Python SDK (<a href="https://github.com/apache/beam/issues/X";>#X</a>).</li> <li>New highly anticipated feature Y added to Java SDK (<a href="https://github.com/apache/beam/issues/Y";>#Y</a>).</li> </ul> <h2>I/Os</h2> <ul> <li>Support for Bigtable sink (Write and WriteBatch) added (Go) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/23324";>#23324</a>).</li> <li>S3 implementation of the Beam filesystem (Go) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/23991";>#23991</a>).</li> <li>Support for SingleStoreDB source and sink added (Java) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/22617";>#22617</a>).</li> <li>Added support for DefaultAzureCredential authentication in Azure Filesystem (Python) (<a href="https://github-redirect.dependabot.com/apache/beam/issues/24210";>#24210</a>).</li> </ul> <h2>New Features / Improvements</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/apache/beam/commit/fef98f7597f11aaa93388d547f58bf0482ed74f0";><code>fef98f7</code></a> Set version for 2.45.0 RC1</li> <li><a href="https://github.com/apache/beam/commit/b29e8f34710a0259ab6db6c3892e5f909342b559";><code>b29e8f3</code></a> delete file used in internal testing (<a href="https://github-redirect.dependabot.com/apache/beam/issues/25342";>#25342</a>)</li> <li><a href="https://github.com/apache/beam/commit/b6c0c7b52687965727d3a67d2c6039889468e16b";><code>b6c0c7b</code></a> skip automated expansion test (<a href="https://github-redirect.dependabot.com/apache/beam/issues/25307";>#25307</a>)</li> <li><a href="https://github.com/apache/beam/commit/e81c01fee3a54a0ffe0a04a0b3a925f368b2a436";><code>e81c01f</code></a> Fix pulling licenses (<a href="https://github-redirect.dependabot.com/apache/beam/issues/25235";>#25235</a>)</li> <li><a href="https://github.com/apache/beam/commit/f67398fd2fd88a3bd76db7eb1f2079d36bf0430c";><code>f67398f</code></a> update GCP cloud libraries BOM to 26.5.0 (<a href="https://github-redirect.dependabot.com/apache/beam/issues/25204";>#25204</a>)</li> <li><a href="https://github.com/apache/beam/commit/ade83b355eed496c7e23606ab63e86eddd1d3988";><code>ade83b3</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/apache/beam/issues/25205";>#25205</a>: Cherry pick/fix bigquery inconsistent cache</li> <li><a href="https://github.com/apache/beam/commit/7f6c93ea039fbd7894542ace4fae5a24b78e9100";><code>7f6c93e</code></a> Fix inconsistent cache bug</li> <li><a href="https://github.com/apache/beam/commit/ab5cebf5525707920f6e812ea17ef3ab622dbca9";><code>ab5cebf</code></a> Handle schema updates in Storage API writes.</li> <li><a href="https://github.com/apache/beam/commit/7d07ffe68ba83e59e9dcdd0c252a12fcfa062be3";><code>7d07ffe</code></a> update cloudpickle version (<a href="https://github-redirect.dependabot.com/apache/beam/issues/25143";>#25143</a>)</li> <li><a href="https://github.com/apache/beam/commit/1734d537fdc003d51c9ef84f8fd31cba6ee016b6";><code>1734d53</code></a> Remove databaseRole from metadata DB requests in SpannerIO.ReadChangeStream (...</li> <li>Additional commits viewable in <a href="https://github.com/apache/beam/compare/v2.42.0...v2.45.0";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: github-unsubscr...@beam.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
