Bump the python-dependencies group with 3 updates

[dependabot]

Updates the requirements on torch, torchvision and numpy to permit the latest version.
Updates torch to 2.8.0

Release notes

Sourced from torch's releases.

PyTorch 2.8.0 Release Notes

• Highlights
• Backwards Incompatible Changes
• Deprecations
• New Features
• Improvements
• Bug fixes
• Performance
• Documentation
• Developers

Highlights

... (truncated)

Changelog

Sourced from torch's changelog.

Releasing PyTorch

• Release Compatibility Matrix
  • PyTorch CUDA Support Matrix
• Release Cadence
• General Overview
  • Frequently Asked Questions
• Cutting a release branch preparations
• Cutting release branches
  • pytorch/pytorch
  • PyTorch ecosystem libraries
  • Making release branch specific changes for PyTorch
  • Making release branch specific changes for ecosystem libraries
• Running Launch Execution team Core XFN sync
• Drafting RCs (https://github.com/pytorch/pytorch/blob/main/Release Candidates) for PyTorch and domain libraries
  • Release Candidate Storage
  • Release Candidate health validation
  • Cherry Picking Fixes
    • How to do Cherry Picking
  • Cherry Picking Reverts
• Preparing and Creating Final Release Candidate
• Promoting RCs to Stable
• Additional Steps to prepare for release day
  • Modify release matrix
  • Open Google Colab issue
• Patch Releases
  • Patch Release Criteria
  • Patch Release Process
    • Patch Release Process Description
    • Triage
    • Issue Tracker for Patch releases
    • Building a release schedule / cherry picking
    • Building Binaries / Promotion to Stable
• Hardware / Software Support in Binary Build Matrix
  • Python
  • Accelerator Software
    • Special support cases
  • Operating Systems
• Submitting Tutorials
• Special Topics
  • Updating submodules for a release
  • Triton dependency for the release

Release Compatibility Matrix

Following is the Release Compatibility Matrix for PyTorch releases:

... (truncated)

Commits

• ba56102 Cherrypick: Add the RunLLM widget to the website (#159592)
• c525a02 [dynamo, docs] cherry pick torch.compile programming model docs into 2.8 (#15...
• a1cb3cc [Release Only] Remove nvshmem from list of preload libraries (#158925)
• c76b235 Move out super large one off foreach_copy test (#158880)
• 20a0e22 Revert "[Dynamo] Allow inlining into AO quantization modules (#152934)" (#158...
• 9167ac8 [MPS] Switch Cholesky decomp to column wise (#158237)
• 5534685 [MPS] Reimplement tri[ul] as Metal shaders (#158867)
• d19e08d Cherry pick PR 158746 (#158801)
• a6c044a [cherry-pick] Unify torch.tensor and torch.ops.aten.scalar_tensor behavior (#...
• 620ebd0 [Dynamo] Use proper sources for constructing dataclass defaults (#158689)
• Additional commits viewable in compare view

Updates torchvision to 0.23.0

Release notes

Sourced from torchvision's releases.

Torchvision 0.23 release

Highlight - Transforming KeyPoints and Rotated boxes!

📦 This release is introducing two highly popular feature requests: Transforms support for KeyPoints and Rotated Bounding Boxes!

• Rotated Bounding Boxes provide a tighter fit and alignment with rotated and elongated objects, which improves the localization, reduces overlap in densely packed images, and improves isolation of objects in crowded scenes.
• KeyPoints offer a robust and accurate way to identify and locate specific points of interest within an image or video frame. These features aim at improving developer experience to implement use cases, including detecting & tracking objects, estimating pose, analyzing facial expressions, and creating augmented reality experiences.

We illustrated the use of Rotated Bounding Boxes below. You can expect keypoints and rotated boxes to work with all existing torchvision transforms in torchvision.transforms.v2. You can find some examples on how to use those transformations in our Transforms on Rotated Bounding Boxes tutorials.

[!NOTE] These features are released in BETA status. The API are unlikely to change, but we may have some rough edges and we may make some slight bug fixes in future releases. Please let us know if you encounter any issue!

Detailed changes

New Features

[transforms] Added support for BoundingBoxes formats and transforms (#9104, #9084, #9095, #9138) [transforms] Added the KeyPoints to TVTensor and support for transforms (#8817)

Improvements

[utils] Add label background to draw_bounding_boxes (#9018) [MPS] Add deformable conv2d kernel support on MPS (#9017, #9115) [documentation] Various documentation improvements (#9063, #9119, #9083, #9105, #9106, #9145) [code-quality] Bunch of code quality improvements (#9087, #9093, #8814, #9035, #9120, #9080, #9027, #9062, #9117, #9024, #9032)

Bug Fixes

[datasets] Fix COCO dataset to avoid issue when copying the dataset results (#9107) [datasets] Raise error when download=True for LFW dataset, which is not available for download anymore #9040) [tv_tensors] Add error message when setting 1D tensor ToImage() (#9114) [io] Warn when webp is asked to decode into grayscale (#9101)

Contributors

🎉 We're grateful for our community, which helps us improve Torchvision by submitting issues and PRs, and providing feedback and suggestions. The following persons have contributed patches for this release: @​AlannaBurke, @​Alexandre-SCHOEPP, @​atalman, @​AntoineSimoulin, @​BoyuanFeng, @​cyyever, @​elmuz, @​emmanuel-ferdman, @​hmk114, @​Isalia20, @​NicolasHug, @​malfet, @​chengolivia, @​RhutvikH, @​hvaara, @​scotts, @​alinpahontu2912, @​tsahiasher, and @​youcefouadjer.

Commits

• 824e8c8 [release/0.23] Cherry-pick PIL mode mitigation (#9153)
• 9a8003e [release/0.23] Documentation cherry picks (#9145)
• a0883e2 [release/0.23] Cherry pick (#9138)
• 5dc9e7d [release/0.23] Update jobs branch (#9124)
• 147db71 [release/0.23] Remove prototype (#9123)
• 0721867 [CI] Restore MacOS test sanity (#9120)
• 89f5855 Add libwebp to contributing doc (#9119)
• 7b283c2 Add error message when setting 1D tensor ToImage() (#9114)
• dd1706a Use 12.6 instead of deprecated 11.8 (#9117)
• d2db23a Undo part of #9017 (#9115)
• Additional commits viewable in compare view

Updates numpy from 1.26.4 to 2.0.2

Release notes

Sourced from numpy's releases.

NumPy 2.0.2 release (Aug 26, 2024)

NumPy 2.0.2 Release Notes

NumPy 2.0.2 is a maintenance release that fixes bugs and regressions discovered after the 2.0.1 release.

The Python versions supported by this release are 3.9-3.12.

Contributors

A total of 13 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

• Bruno Oliveira +
• Charles Harris
• Chris Sidebottom
• Christian Heimes +
• Christopher Sidebottom
• Mateusz Sokół
• Matti Picus
• Nathan Goldbaum
• Pieter Eendebak
• Raghuveer Devulapalli
• Ralf Gommers
• Sebastian Berg
• Yair Chuchem +

Pull requests merged

A total of 19 pull requests were merged for this release.

• #27000: REL: Prepare for the NumPy 2.0.1 release [wheel build]
• #27001: MAINT: prepare 2.0.x for further development
• #27021: BUG: cfuncs.py: fix crash when sys.stderr is not available
• #27022: DOC: Fix migration note for alltrue and sometrue
• #27061: BUG: use proper input and output descriptor in array_assign_subscript...
• #27073: BUG: Mirror VQSORT_ENABLED logic in Quicksort
• #27074: BUG: Bump Highway to latest master
• #27077: BUG: Off by one in memory overlap check
• #27122: BUG: Use the new npyv_loadable_stride_ functions for ldexp and...
• #27126: BUG: Bump Highway to latest
• #27128: BUG: add missing error handling in public_dtype_api.c
• #27129: BUG: fix another cast setup in array_assign_subscript
• #27130: BUG: Fix building NumPy in FIPS mode
• #27131: BLD: update vendored Meson for cross-compilation patches
• #27146: MAINT: Scipy openblas 0.3.27.44.4
• #27151: BUG: Do not accidentally store dtype metadata in np.save
• #27195: REV: Revert undef I and document it
• #27213: BUG: Fix NPY_RAVEL_AXIS on backwards compatible NumPy 2 builds
• #27279: BUG: Fix array_equal for numeric and non-numeric scalar types

... (truncated)

Commits

• 854252d Merge pull request #27280 from charris/prepare-2.0.2
• cffa071 REL: Prepare for the NumPy 2.0.2 release [wheel build]
• 1693029 Merge pull request #27279 from charris/backport-27275
• da9f9c3 BUG: Fix array_equal for numeric and non-numeric scalar types
• ee1cf96 Merge pull request #27213 from charris/backport-27202
• 49dec35 BUG: Fix NPY_RAVEL_AXIS on backwards compatible NumPy 2 builds
• be56ae2 Merge pull request #27195 from charris/backport-27182
• 75b039c REV: Revert undef I and document it
• 428e2ba Merge pull request #27151 from charris/backport-27143
• 451516d BUG: Do not accidentally store dtype metadata in np.save
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: python. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.