chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@vitejs/plugin-vue (source)	5.1.3 -> 5.1.4
@vueuse/integrations (source)	11.0.3 -> 11.1.0
aiohttp	==3.10.2 -> ==3.10.5
eslint (source)	8.57.0 -> 8.57.1
monaco-editor	^0.51.0 -> ^0.52.0
openai	==1.46.0 -> ==1.47.0
requests (source, changelog)	==2.32.2 -> ==2.32.3
selenium	==4.24.0 -> ==4.25.0
selenium-webdriver (source)	4.24.0 -> 4.24.1
sentence-transformers	==3.1.0 -> ==3.1.1
start-server-and-test	2.0.7 -> 2.0.8
tailwindcss (source)	3.4.11 -> 3.4.12
viem (source)	2.21.7 -> 2.21.10
vite (source)	5.3.6 -> 5.4.6
vue (source)	3.5.5 -> 3.5.6

---

Release Notes

vitejs/vite-plugin-vue (@​vitejs/plugin-vue)

v5.1.4

• chore: format (07b29a6)
• chore(deps): update dependency rollup to ^4.21.3 (#​440) (98766c2), closes #​440
• fix: skip checking private properties of typeParameters (#​443) (e4f5fff), closes #​443
• fix(plugin-vue): allow overwrite esbuild config (#​444) (1344294), closes #​444

vueuse/vueuse (@​vueuse/integrations)

v11.1.0

Compare Source

   🚀 Features

• useCurrentElement: Try to infer type from $el  -  by @​KazariEX in https://github.com/vueuse/vueuse/issues/4202 (8e141)
• useDropZone: Add multiple prop to control multi-file drop  -  by @​danngossinga and Dan T. Ngossinga in https://github.com/vueuse/vueuse/issues/4227 (3b94d)
• useFileDialog: Return onCancel handler  -  by @​AndreyYolkin in https://github.com/vueuse/vueuse/issues/4184 (30452)

   🐞 Bug Fixes

• computedAsync: Type signature  -  by @​ferferga in https://github.com/vueuse/vueuse/issues/4207 (45b18)
• onClickOutside: Make ignore accept reactive values  -  by @​CernyMatej in https://github.com/vueuse/vueuse/issues/4211 (aa5e3)
• onClickOutside: Improve cross-browser compatibility  -  by @​Onion-L and @​antfu in https://github.com/vueuse/vueuse/issues/4185 (9e598)
• useArrayFilter: Match type to Array.prototype.filter  -  by @​Jesse205 in https://github.com/vueuse/vueuse/issues/4175 (71fd1)
• useDraggable: Draggable component not work with container  -  by @​huiliangShen in https://github.com/vueuse/vueuse/issues/4192 (7f25b)
• useFocusWithin: Make useFocusWhithin match the behavior of the :focus-within  -  by @​ben-lau in https://github.com/vueuse/vueuse/issues/4134 (c5407)
• useInfiniteScroll: Stop watch when unmounted  -  by @​zyyv in https://github.com/vueuse/vueuse/issues/4110 (f30cc)
• useIntersectionObserver: Add Document type for root  -  by @​phk422 in https://github.com/vueuse/vueuse/issues/4210 (6b584)
• useMouseInElement: Allow el to be instanceof Element  -  by @​FRSgit in https://github.com/vueuse/vueuse/issues/4189 (4dcc2)
• useNetwork: Return immutable values  -  by @​rudnovd in https://github.com/vueuse/vueuse/issues/4187 (99179)
• useResizeObserver: Update type  -  by @​phk422 in https://github.com/vueuse/vueuse/issues/4218 (044dd)

    View changes on GitHub

aio-libs/aiohttp (aiohttp)

v3.10.5

Compare Source

=========================

Bug fixes

• Fixed :meth:aiohttp.ClientResponse.json() not setting status when :exc:aiohttp.ContentTypeError is raised -- by :user:bdraco.

  Related issues and pull requests on GitHub:
  :issue:8742.

Miscellaneous internal changes

• Improved performance of the WebSocket reader -- by :user:bdraco.

  Related issues and pull requests on GitHub:
  :issue:8736, :issue:8747.

---

v3.10.4

Compare Source

v3.10.3

Compare Source

========================

Bug fixes

• Fixed multipart reading when stream buffer splits the boundary over several read() calls -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub:
  :issue:8653.

• Fixed :py:class:aiohttp.TCPConnector doing blocking I/O in the event loop to create the SSLContext -- by :user:bdraco.

  The blocking I/O would only happen once per verify mode. However, it could cause the event loop to block for a long time if the SSLContext creation is slow, which is more likely during startup when the disk cache is not yet present.

  Related issues and pull requests on GitHub:
  :issue:8672.

Miscellaneous internal changes

• Improved performance of :py:meth:~aiohttp.ClientWebSocketResponse.receive and :py:meth:~aiohttp.web.WebSocketResponse.receive when there is no timeout. -- by :user:bdraco.

  The timeout context manager is now avoided when there is no timeout as it accounted for up to 50% of the time spent in the :py:meth:~aiohttp.ClientWebSocketResponse.receive and :py:meth:~aiohttp.web.WebSocketResponse.receive methods.

  Related issues and pull requests on GitHub:
  :issue:8660.

• Improved performance of starting request handlers with Python 3.12+ -- by :user:bdraco.

  Related issues and pull requests on GitHub:
  :issue:8661.

• Improved performance of HTTP keep-alive checks -- by :user:bdraco.

  Previously, when processing a request for a keep-alive connection, the keep-alive check would happen every second; the check is now rescheduled if it fires too early instead.

  Related issues and pull requests on GitHub:
  :issue:8662.

• Improved performance of generating random WebSocket mask -- by :user:bdraco.

  Related issues and pull requests on GitHub:
  :issue:8667.

---

eslint/eslint (eslint)

v8.57.1

Compare Source

microsoft/monaco-editor (monaco-editor)

v0.52.0

Compare Source

• Comment added inside of IModelContentChangedEvent

openai/openai-python (openai)

v1.47.0

Compare Source

Full Changelog: v1.46.1...v1.47.0

Features

• client: send retry count header (21b0c00)

Chores

• types: improve type name for embedding models (#​1730) (4b4eb2b)

v1.46.1

Compare Source

Full Changelog: v1.46.0...v1.46.1

Bug Fixes

• client: handle domains with underscores (#​1726) (cd194df)

Chores

• streaming: silence pydantic model_dump warnings (#​1722) (30f84b9)

psf/requests (requests)

v2.32.3

Compare Source

Bugfixes

• Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of
  HTTPAdapter. (#​6716)
• Fixed issue where Requests started failing to run on Python versions compiled
  without the ssl module. (#​6724)

SeleniumHQ/selenium (selenium-webdriver)

v4.24.1

Compare Source

UKPLab/sentence-transformers (sentence-transformers)

v3.1.1: - Patch hard negative mining & remove numpy<2 restriction

Compare Source

This patch release fixes hard negatives mining for models that don't automatically normalize their embeddings and it lifts the numpy<2 restriction that was previously required.

Install this version with

### Full installation:
pip install sentence-transformers[train]==3.1.1

### Inference only:
pip install sentence-transformers==3.1.1

Hard Negatives Mining Patch (#​2944)

The mine_hard_negatives utility introduced in the previous release would fail if use_faiss=True & the model does not automatically normalize its embeddings. This release patches that, allowing the utility to work with all Sentence Transformer models:

from sentence_transformers.util import mine_hard_negatives
from sentence_transformers import SentenceTransformer
from datasets import load_dataset

### Load a Sentence Transformer model
model = SentenceTransformer("mixedbread-ai/mxbai-embed-large-v1").bfloat16()

### Load a dataset to mine hard negatives from
dataset = load_dataset("sentence-transformers/natural-questions", split="train[:10000]")
print(dataset)
"""
Dataset({
    features: ['query', 'answer'],
    num_rows: 10000
})
"""

### Mine hard negatives
dataset = mine_hard_negatives(
    dataset=dataset,
    model=model,
    range_min=10,
    range_max=50,
    max_score=0.8,
    margin=0.1,
    num_negatives=5,
    sampling_strategy="random",
    batch_size=128,
    use_faiss=True,
)
'''
Batches: 100%|██████████████████████████████████████████████████████████████████████████████████████████████████████████████████| 75/75 [00:21<00:00,  3.51it/s]
Batches: 100%|██████████████████████████████████████████████████████████████████████████████████████████████████████████████████| 79/79 [00:03<00:00, 25.77it/s]
Querying FAISS index: 100%|███████████████████████████████████████████████████████████████████████████████████████████████████████| 1/1 [00:00<00:00,  3.98it/s]
Metric       Positive       Negative     Difference
Count          10,000         47,711
Mean           0.7600         0.5376         0.2299
Median         0.7673         0.5379         0.2274
Std            0.0658         0.0387         0.0629
Min            0.3858         0.3732         0.1044
25%            0.7219         0.5129         0.1833
50%            0.7673         0.5379         0.2274
75%            0.8058         0.5617         0.2724
Max            0.9341         0.7024         0.4780
Skipped 48770 potential negatives (9.56%) due to the margin of 0.1.
Could not find enough negatives for 2289 samples (4.58%). Consider adjusting the range_max, range_min, margin and max_score parameters if you'd like to find more valid negatives.
'''
print(dataset)
'''
Dataset({
    features: ['query', 'answer', 'negative'],
    num_rows: 47711
})
'''
print(dataset[0])
'''
{
    'query': 'where is the us navy base in japan located',
    'answer': 'United States Fleet Activities Yokosuka The United States Fleet Activities Yokosuka (横須賀海 軍施設, Yokosuka kaigunshisetsu) or Commander Fleet Activities Yokosuka (司令官艦隊活動横須賀, Shirei-kan kantai katsudō Yokosuka) is a United States Navy base in Yokosuka, Japan. Its mission is to maintain and operate base facilities for the logistic, recreational, administrative support and service of the U.S. Naval Forces Japan, Seventh Fleet and other operating forces assigned in the Western Pacific. CFAY is the largest strategically important U.S. naval installation in the western Pacific.[1] As of August 2013[update], it was commanded by Captain David Glenister.',
    'negative': "2011 Tōhoku earthquake and tsunami The earthquake took place at 14:46 JST (UTC 05:46) around 67\xa0km (42\xa0mi) from the nearest point on Japan's coastline, and initial estimates indicated the tsunami would have taken 10 to 30\xa0minutes to reach the areas first affected, and then areas farther north and south based on the geography of the coastline.[127][128] Just over an hour after the earthquake at 15:55 JST, a tsunami was observed flooding Sendai Airport, which is located near the coast of Miyagi Prefecture,[129][130] with waves sweeping away cars and planes and flooding various buildings as they traveled inland.[131][132] The impact of the tsunami in and around Sendai Airport was filmed by an NHK News helicopter, showing a number of vehicles on local roads trying to escape the approaching wave and being engulfed by it.[133] A 4-metre-high (13\xa0ft) tsunami hit Iwate Prefecture.[134] Wakabayashi Ward in Sendai was also particularly hard hit.[135] At least 101 designated tsunami evacuation sites were hit by the wave.[136]"
}
'''
dataset.push_to_hub("natural-questions-hard-negatives", "triplet")

Thanks to @​omarnj-lab for pointing out the bug to me.

Numpy restriction lifted (#​2937)

The v3.1.0 Sentence Transformers release required numpy<2 to prevent crashes on Windows. However, various third-parties (e.g. scipy) have now been recompiled & released, allowing the Windows tests to pass again.

If you experience the following snippet:

A module that was compiled using NumPy 1.x cannot be run in NumPy 2.0.0 as it may crash. To support both 1.x and 2.x versions of NumPy, modules must be compiled with NumPy 2.0. Some module may need to rebuild instead e.g. with 'pybind11>=2.12'.
If you are a user of the module, the easiest solution will be to downgrade to 'numpy<2' or try to upgrade the affected module. We expect that some modules will need time to support NumPy 2.

Then consider 1) upgrading the dependency from which the error occurred or 2) downgrading numpy to below v2:

pip install -U numpy<2

Thanks to @​kozlek for pointing this out to me and helping getting it resolved.

All changes

• [deps] Attempt to remove numpy restrictions by @​tomaarsen in https://github.com/UKPLab/sentence-transformers/pull/2937
• [metadata] Extend pyproject.toml metadata by @​tomaarsen in https://github.com/UKPLab/sentence-transformers/pull/2943
• [fix] Ensure that the embeddings from hard negative mining are normalized by @​tomaarsen in https://github.com/UKPLab/sentence-transformers/pull/2944

Full Changelog: UKPLab/sentence-transformers@v3.1.0...v3.1.1

bahmutov/start-server-and-test (start-server-and-test)

v2.0.8

Compare Source

tailwindlabs/tailwindcss (tailwindcss)

v3.4.12

Compare Source

wevm/viem (viem)

v2.21.10

Compare Source

Patch Changes

• #​2738 15c71b6 Thanks @​johncpalmer! - Added World Chain

v2.21.9

Compare Source

Patch Changes

• 312160a Thanks @​jxom! - Fixed issue where watchBlock would not respect the emitOnBegin property for WebSocket Transports.

• b509c6e Thanks @​jxom! - Fixed mnemonicToAccount options type.

v2.21.8

Compare Source

Patch Changes

• #​2724 c2b2c78 Thanks @​cygaar! - Reverted custom Abstract EIP712 domain changes.

• 2fa3d00 Thanks @​jxom! - Fixed zeroish log filter argument parsing.

vitejs/vite (vite)

v5.4.6

Compare Source

Please refer to CHANGELOG.md for details.

v5.4.5

Compare Source

Please refer to CHANGELOG.md for details.

v5.4.4

Compare Source

Please refer to CHANGELOG.md for details.

v5.4.3

Compare Source

• fix: allow getting URL of JS files in publicDir (#​17915) (943ece1), closes #​17915
• fix: cjs warning respect the logLevel flag (#​17993) (dc3c14f), closes #​17993
• fix: improve CJS warning trace information (#​17926) (5c5f82c), closes #​17926
• fix: only remove entry assets handled by Vite core (#​17916) (ebfaa7e), closes #​17916
• fix: waitForRequestIdle locked (#​17982) (ad13760), closes #​17982
• fix(css): fix directory index import in sass modern api (#​17960) (9b001ba), closes #​17960
• fix(css): fix sass file:// reference (#​17909) (561b940), closes #​17909
• fix(css): fix sass modern source map (#​17938) (d428e7e), closes #​17938
• fix(deps): bump tsconfck (#​17990) (8c661b2), closes #​17990
• fix(html): rewrite assets url in (#​17988) (413c86a), closes #​17988
• fix(preload): add crossorigin attribute in CSS link tags (#​17930) (15871c7), closes #​17930
• chore: reduce diffs with v6 branch (#​17942) (bf9065a), closes #​17942
• chore(deps): update all non-major dependencies (#​17945) (cfb621e), closes #​17945
• chore(deps): update all non-major dependencies (#​17991) (0ca53cf), closes #​17991

v5.4.2

Compare Source

• chore: remove stale TODOs (#​17866) (e012f29), closes #​17866
• refactor: remove redundant prepend/strip base (#​17887) (3b8f03d), closes #​17887
• fix: resolve relative URL generated by renderBuiltUrl passed to module preload (#​16084) (fac3a8e), closes #​16084
• feat: support originalFilename (#​17867) (7d8c0e2), closes #​17867

v5.4.1

Compare Source

• fix: build.modulePreload.resolveDependencies is optimizable (#​16083) (e961b31), closes #​16083
• fix: align CorsOptions.origin type with @​types/cors (#​17836) (1bda847), closes #​17836
• fix: typings for vite:preloadError (#​17868) (6700594), closes #​17868
• fix(build): avoid re-define __vite_import_meta_env__ (#​17876) (e686d74), closes #​17876
• fix(deps): update all non-major dependencies (#​17869) (d11711c), closes #​17869
• fix(lightningcss): search for assets with correct base path (#​17856) (4e5ce3c), closes #​17856
• fix(worker): handle self reference url worker in dependency for build (#​17846) (391bb49), closes #​17846
• chore: fix picocolors import for local dev (#​17884) (9018255), closes #​17884
• refactor: remove handleHotUpdate from watch-package-data plugin (#​17865) (e16bf1f), closes #​17865

v5.4.0

Compare Source

• fix(build): windows platform build output path error (#​17818) (6ae0615), closes #​17818
• fix(deps): update launch-editor to consume fix for windows paths (#​17828) (cf2f90d), closes #​17828
• fix(ssr): fix global variable name conflict (#​17809) (6aa2206), closes #​17809
• fix(worker): fix importScripts injection breaking iife code (#​17827) (bb4ba9f), closes #​17827
• chore: bump typescript-eslint to v8 (#​17624) (d1891fd), closes #​17624
• chore(deps): update all non-major dependencies (#​17820) (bb2f8bb), closes #​17820
• perf(ssr): do a single-pass over AST with node cache arrays (#​17812) (81327eb), closes #​17812
vuejs/core (vue)
v3.5.6
Compare Source
Bug Fixes
• compile-dom: should be able to stringify mathML (#​11891) (85c138c)
• compiler-sfc: preserve old behavior when using withDefaults with desutructure (8492c3c), closes #​11930
• reactivity: avoid exponential perf cost and reduce call stack depth for deeply chained computeds (#​11944) (c74bb8c), closes #​11928
• reactivity: rely on dirty check only when computed has deps (#​11931) (aa5dafd), closes #​11929
• watch: once option should be ignored by watchEffect (#​11884) (49fa673)
• watch: unwatch should be callable during SSR (#​11925) (2d6adf7), closes #​11924

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 17.23%. Comparing base (10be8c9) to head (7155f08).
Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #522   +/-   ##
=======================================
  Coverage   17.23%   17.23%           
=======================================
  Files         111      111           
  Lines        7971     7971           
  Branches      190      190           
=======================================
  Hits         1374     1374           
  Misses       6522     6522           
  Partials       75       75           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

🎉 This PR is included in version 0.9.1 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀