Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update transpose doc #6072

Closed
wants to merge 34 commits into from
Closed

Update transpose doc #6072

wants to merge 34 commits into from
+8,729 −2,355

Conversation

gramalingam
Copy link
Contributor

Description

Clarify the permutation specification of the Transpose op.

Motivation and Context

It is not clear from the spec whether the i-th input axis corresponds to the perm[i]-th output axis or whether the i-th output axis corresponds to perm[i]-th input axis. Make this clear.

@gramalingam gramalingam requested a review from a team as a code owner April 9, 2024 23:45
github-advanced-security[bot]
github-advanced-security bot found potential problems Apr 9, 2024
View reviewed changes
onnx/defs/tensor/defs.cc Fixed Show fixed Hide fixed
@gramalingam gramalingam added operator Issues related to ONNX operators spec clarification Clarification of the ONNX spec needed labels Apr 9, 2024
@justinchuby
Copy link
Contributor

Would it be a good idea to address #4611 in the same PR?

@gramalingam
Copy link
Contributor Author

Would it be a good idea to address #4611 in the same PR?

Maybe. But at least some of those questions require some investigation ... it is easy enough to say 0D and 1D inputs should be supported (the op is well-defined for these cases). But that doesn't mean that a specific implementation will support them ... only if we test it out, will we realize if some assumptions are being made.

@gramalingam gramalingam added the auto update doc Generate md/proto files automatically using the CI pipeline label Apr 15, 2024
@gramalingam
Copy link
Contributor Author

Added point about perm being optional.

@codecov Codecov
Copy link

codecov bot commented Apr 15, 2024
edited

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 57.04%. Comparing base (83194ed) to head (1db4cb8).
Report is 38 commits behind head on main.

Current head 1db4cb8 differs from pull request most recent head 8dd11fa

Please upload reports for the commit 8dd11fa to get more accurate results.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #6072      +/-   ##
==========================================
+ Coverage   56.95%   57.04%   +0.08%     
==========================================
  Files         506      506              
  Lines       30467    30941     +474     
  Branches     4592     4595       +3     
==========================================
+ Hits        17353    17649     +296     
- Misses      12285    12466     +181     
+ Partials      829      826       -3

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@justinchuby justinchuby added the review needed: operators approvers Require reviews from members of operators-approvers label Apr 16, 2024
@gramalingam
Copy link
Contributor Author

As for the question about 0D input tensors (scalars): it looks like both ONNX shape inference as well as its reference implementation need to be extended/fixed to handle this case.

@gramalingam gramalingam self-assigned this Apr 17, 2024
@xadupre xadupre enabled auto-merge June 6, 2024 13:48
@gramalingam
Copy link
Contributor Author

I am a bit mystified how the test-data files got included in the changed files? Perhaps a result of merging with main branch? Still a bit confusing

@xadupre xadupre disabled auto-merge June 6, 2024 14:31
@xadupre
Copy link
Contributor

xadupre commented Jun 6, 2024

No clue. I don't remember seeing them when I reviewed the PR.

@gramalingam
Copy link
Contributor Author

Looks like it might have come from the auto-update-doc ... though it was not designed to do so originally.

@gramalingam gramalingam removed the auto update doc Generate md/proto files automatically using the CI pipeline label Jun 6, 2024
gramalingam and others added 7 commits June 6, 2024 12:22
@gramalingam
Update transpose doc
699310a 
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@gramalingam
Mention that perm is optional
9ac75be 
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@dependabot @justinchuby @gramalingam
Bump ruff from 0.3.0 to 0.3.5 (onnx#6064)
5ea4881 
Bumps [ruff](https://github.com/astral-sh/ruff) from 0.3.0 to 0.3.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/astral-sh/ruff/releases">ruff's
releases</a>.</em></p>
<blockquote>
<h2>v0.3.5</h2>
<h2>Changes</h2>
<h3>Preview features</h3>
<ul>
<li>[<code>pylint</code>] Implement <code>modified-iterating-set</code>
(<code>E4703</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10473">#10473</a>)</li>
<li>[<code>refurb</code>] Implement <code>for-loop-set-mutations</code>
(<code>FURB142</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10583">#10583</a>)</li>
<li>[<code>refurb</code>] Implement <code>unnecessary-from-float</code>
(<code>FURB164</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10647">#10647</a>)</li>
<li>[<code>refurb</code>] Implement
<code>verbose-decimal-constructor</code> (<code>FURB157</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10533">#10533</a>)</li>
</ul>
<h3>Rule changes</h3>
<ul>
<li>[<code>flake8-comprehensions</code>] Handled special case for
<code>C401</code> which also matches <code>C416</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10596">#10596</a>)</li>
<li>[<code>flake8-pyi</code>] Mark
<code>unaliased-collections-abc-set-import</code> fix as
&quot;safe&quot; for more cases in stub files (<code>PYI025</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10547">#10547</a>)</li>
<li>[<code>numpy</code>] Add <code>row_stack</code> to NumPy 2.0
migration rule (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10646">#10646</a>)</li>
<li>[<code>pycodestyle</code>] Allow cell magics before an import
(<code>E402</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10545">#10545</a>)</li>
<li>[<code>pycodestyle</code>] Avoid blank line rules for the first
logical line in cell (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10291">#10291</a>)</li>
</ul>
<h3>Configuration</h3>
<ul>
<li>Respected nested namespace packages (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10541">#10541</a>)</li>
<li>[<code>flake8-boolean-trap</code>] Add setting for user defined
allowed boolean trap (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10531">#10531</a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>Correctly handle references in <code>__all__</code> definitions when
renaming symbols in autofixes (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10527">#10527</a>)</li>
<li>Track ranges of names inside <code>__all__</code> definitions (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10525">#10525</a>)</li>
<li>[<code>flake8-bugbear</code>] Avoid false positive for usage after
<code>continue</code> (<code>B031</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10539">#10539</a>)</li>
<li>[<code>flake8-copyright</code>] Accept commas in default copyright
pattern (<a
href="https://redirect.github.com/astral-sh/ruff/pull/9498">#9498</a>)</li>
<li>[<code>flake8-datetimez</code>] Allow f-strings with <code>%z</code>
for <code>DTZ007</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10651">#10651</a>)</li>
<li>[<code>flake8-pytest-style</code>] Fix <code>PT014</code> autofix
for last item in list (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10532">#10532</a>)</li>
<li>[<code>flake8-quotes</code>] Ignore <code>Q000</code>,
<code>Q001</code> when string is inside forward ref (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10585">#10585</a>)</li>
<li>[<code>isort</code>] Always place non-relative imports after
relative imports (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10669">#10669</a>)</li>
<li>[<code>isort</code>] Respect Unicode characters in import sorting
(<a
href="https://redirect.github.com/astral-sh/ruff/pull/10529">#10529</a>)</li>
<li>[<code>pyflakes</code>] Fix F821 false negatives when <code>from
__future__ import annotations</code> is active (attempt 2) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10524">#10524</a>)</li>
<li>[<code>pyflakes</code>] Make <code>unnecessary-lambda</code> an
always-unsafe fix (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10668">#10668</a>)</li>
<li>[<code>pylint</code>] Fixed false-positive on the rule
<code>PLW1641</code> (<code>eq-without-hash</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10566">#10566</a>)</li>
<li>[<code>ruff</code>] Fix panic in unused <code># noqa</code> removal
with multi-byte space (<code>RUF100</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10682">#10682</a>)</li>
</ul>
<h3>Documentation</h3>
<ul>
<li>Add PR title format to <code>CONTRIBUTING.md</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10665">#10665</a>)</li>
<li>Fix list markup to include blank lines required (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10591">#10591</a>)</li>
<li>Put <code>flake8-logging</code> next to the other flake8 plugins in
registry (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10587">#10587</a>)</li>
<li>[<code>flake8-bandit</code>] Update warning message for rule
<code>S305</code> to address insecure block cipher mode use (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10602">#10602</a>)</li>
<li>[<code>flake8-bugbear</code>] Document use of anonymous assignment
in <code>useless-expression</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10551">#10551</a>)</li>
<li>[<code>flake8-datetimez</code>] Clarify error messages and docs for
<code>DTZ</code> rules (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10621">#10621</a>)</li>
<li>[<code>pycodestyle</code>] Use same before vs. after numbers for
<code>space-around-operator</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10640">#10640</a>)</li>
<li>[<code>ruff</code>] Change <code>quadratic-list-summation</code>
docs to use <code>iadd</code> consistently (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10666">#10666</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md">ruff's
changelog</a>.</em></p>
<blockquote>
<h2>0.3.5</h2>
<h3>Preview features</h3>
<ul>
<li>[<code>pylint</code>] Implement <code>modified-iterating-set</code>
(<code>E4703</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10473">#10473</a>)</li>
<li>[<code>refurb</code>] Implement <code>for-loop-set-mutations</code>
(<code>FURB142</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10583">#10583</a>)</li>
<li>[<code>refurb</code>] Implement <code>unnecessary-from-float</code>
(<code>FURB164</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10647">#10647</a>)</li>
<li>[<code>refurb</code>] Implement
<code>verbose-decimal-constructor</code> (<code>FURB157</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10533">#10533</a>)</li>
</ul>
<h3>Rule changes</h3>
<ul>
<li>[<code>flake8-comprehensions</code>] Handled special case for
<code>C401</code> which also matches <code>C416</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10596">#10596</a>)</li>
<li>[<code>flake8-pyi</code>] Mark
<code>unaliased-collections-abc-set-import</code> fix as
&quot;safe&quot; for more cases in stub files (<code>PYI025</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10547">#10547</a>)</li>
<li>[<code>numpy</code>] Add <code>row_stack</code> to NumPy 2.0
migration rule (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10646">#10646</a>)</li>
<li>[<code>pycodestyle</code>] Allow cell magics before an import
(<code>E402</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10545">#10545</a>)</li>
<li>[<code>pycodestyle</code>] Avoid blank line rules for the first
logical line in cell (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10291">#10291</a>)</li>
</ul>
<h3>Configuration</h3>
<ul>
<li>Respected nested namespace packages (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10541">#10541</a>)</li>
<li>[<code>flake8-boolean-trap</code>] Add setting for user defined
allowed boolean trap (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10531">#10531</a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>Correctly handle references in <code>__all__</code> definitions when
renaming symbols in autofixes (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10527">#10527</a>)</li>
<li>Track ranges of names inside <code>__all__</code> definitions (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10525">#10525</a>)</li>
<li>[<code>flake8-bugbear</code>] Avoid false positive for usage after
<code>continue</code> (<code>B031</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10539">#10539</a>)</li>
<li>[<code>flake8-copyright</code>] Accept commas in default copyright
pattern (<a
href="https://redirect.github.com/astral-sh/ruff/pull/9498">#9498</a>)</li>
<li>[<code>flake8-datetimez</code>] Allow f-strings with <code>%z</code>
for <code>DTZ007</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10651">#10651</a>)</li>
<li>[<code>flake8-pytest-style</code>] Fix <code>PT014</code> autofix
for last item in list (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10532">#10532</a>)</li>
<li>[<code>flake8-quotes</code>] Ignore <code>Q000</code>,
<code>Q001</code> when string is inside forward ref (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10585">#10585</a>)</li>
<li>[<code>isort</code>] Always place non-relative imports after
relative imports (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10669">#10669</a>)</li>
<li>[<code>isort</code>] Respect Unicode characters in import sorting
(<a
href="https://redirect.github.com/astral-sh/ruff/pull/10529">#10529</a>)</li>
<li>[<code>pyflakes</code>] Fix F821 false negatives when <code>from
__future__ import annotations</code> is active (attempt 2) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10524">#10524</a>)</li>
<li>[<code>pyflakes</code>] Make <code>unnecessary-lambda</code> an
always-unsafe fix (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10668">#10668</a>)</li>
<li>[<code>pylint</code>] Fixed false-positive on the rule
<code>PLW1641</code> (<code>eq-without-hash</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10566">#10566</a>)</li>
<li>[<code>ruff</code>] Fix panic in unused <code># noqa</code> removal
with multi-byte space (<code>RUF100</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10682">#10682</a>)</li>
</ul>
<h3>Documentation</h3>
<ul>
<li>Add PR title format to <code>CONTRIBUTING.md</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10665">#10665</a>)</li>
<li>Fix list markup to include blank lines required (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10591">#10591</a>)</li>
<li>Put <code>flake8-logging</code> next to the other flake8 plugins in
registry (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10587">#10587</a>)</li>
<li>[<code>flake8-bandit</code>] Update warning message for rule
<code>S305</code> to address insecure block cipher mode use (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10602">#10602</a>)</li>
<li>[<code>flake8-bugbear</code>] Document use of anonymous assignment
in <code>useless-expression</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10551">#10551</a>)</li>
<li>[<code>flake8-datetimez</code>] Clarify error messages and docs for
<code>DTZ</code> rules (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10621">#10621</a>)</li>
<li>[<code>pycodestyle</code>] Use same before vs. after numbers for
<code>space-around-operator</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10640">#10640</a>)</li>
<li>[<code>ruff</code>] Change <code>quadratic-list-summation</code>
docs to use <code>iadd</code> consistently (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10666">#10666</a>)</li>
</ul>
<h2>0.3.4</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/astral-sh/ruff/commit/200ebeebdc8ab8ee14f56922e21b218f41a5a7e4"><code>200ebee</code></a>
Bump version to v0.3.5 (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10717">#10717</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/23e8279093d8f891fc8bb59ebea2532649801ed3"><code>23e8279</code></a>
chore(deps): update npm development dependencies (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10716">#10716</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/221b3236a8770e2f9a0c502290b78a5ec58698cc"><code>221b323</code></a>
chore(deps): update strum to 0.26.0 (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10715">#10715</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/a0e15448488badd81b0924653c180cd18029b2c2"><code>a0e1544</code></a>
chore(deps): update rust crate pep440_rs to 0.5.0 (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10703">#10703</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/2740fab7ad8963892d15581e624764c7a7894999"><code>2740fab</code></a>
Renovate: group all <code>strum</code> dependencies together (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10714">#10714</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/7042b9b16dcb91ffa6a49bab6e8d43066131af2a"><code>7042b9b</code></a>
fix(deps): update rust crate similar to v2.5.0 (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10711">#10711</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/4047d456b6e1b5bfd67cf81b921350e2f2989a6c"><code>4047d45</code></a>
chore(deps): update rust crate insta to v1.38.0 (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10701">#10701</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/20d69ea504b95e4cd7751dbb5a17aa446721945d"><code>20d69ea</code></a>
chore(deps): update npm development dependencies (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10697">#10697</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/d021cac0c9755e7f34ee3941c9a98aa7befa9750"><code>d021cac</code></a>
chore(deps): update rust crate tracing-tree to 0.3.0 (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10709">#10709</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/46369d48fe1089d48e0590fcf6fb028218ab84b0"><code>46369d4</code></a>
chore(deps): update rust crate uuid to v1.8.0 (<a
href="https://redirect.github.com/astral-sh/ruff/issues/10710">#10710</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/astral-sh/ruff/compare/v0.3.0...v0.3.5">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ruff&package-manager=pip&previous-version=0.3.0&new-version=0.3.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Justin Chu <justinchu@microsoft.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Justin Chu <justinchuby@users.noreply.github.com>
Co-authored-by: Justin Chu <justinchu@microsoft.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@justinchuby @gramalingam
Remove benchmarking code (onnx#6076)
3eb25c1 
We the benchmarks are not testing much and thus are not very useful.
Removing them to keep code lean and reduce dependencies.

Signed-off-by: Justin Chu <justinchu@microsoft.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@justinchuby @gramalingam
Migrate CI to use Github Actions (onnx#6075)
778e2f9 
Migrate CI to use Github Actions. Update Google Test to a newer version
(some version in 2022). The latest commit has errors I don't know how to
fix.

Use `FetchContent` instead of `ExternalProject` to bring in googletest
according to its documentation
https://google.github.io/googletest/quickstart-cmake.html

Fixes onnx#6074 Fixes
onnx#6073

---------

Signed-off-by: Justin Chu <justinchu@microsoft.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@cjvolzka @gramalingam
Prevent crash on import after GCC 8 builds (onnx#6048)
eb1fd58 
### Description
Possible fix for onnx#6047 based on
https://stackoverflow.com/questions/33149878/experimentalfilesystem-linker-error/33159746#33159746

### Motivation and Context
I'm not a cmake expert so there may be a better way to do this. This did
allow me to build ONNX 1.16 on RHEL 8.

---------

Signed-off-by: Charles Volzka <cjvolzka@us.ibm.com>
Signed-off-by: Charles Volzka <42243335+cjvolzka@users.noreply.github.com>
Co-authored-by: Thiago Crepaldi <thiago.crepaldi@microsoft.com>
Co-authored-by: G. Ramalingam <grama@microsoft.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@gramalingam
Add shape inference test for custom op (onnx#6068)
38e49dc 
Add a unit test for the fix introduced by
onnx#6049

---------

Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
dependabot bot and others added 26 commits June 6, 2024 12:22
@dependabot @gramalingam
Bump ZedThree/clang-tidy-review from 0.17.1 to 0.18.0 (onnx#6063)
54310a0 
Bumps
[ZedThree/clang-tidy-review](https://github.com/zedthree/clang-tidy-review)
from 0.17.1 to 0.18.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/zedthree/clang-tidy-review/releases">ZedThree/clang-tidy-review's
releases</a>.</em></p>
<blockquote>
<h2>v0.18.0</h2>
<h2>What's Changed</h2>
<ul>
<li>chore: add <code>num_comments_as_exitcode</code> option by <a
href="https://github.com/Nerixyz"><code>@​Nerixyz</code></a> in <a
href="https://redirect.github.com/ZedThree/clang-tidy-review/pull/119">ZedThree/clang-tidy-review#119</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ZedThree/clang-tidy-review/compare/v0.17.3...v0.18.0">https://github.com/ZedThree/clang-tidy-review/compare/v0.17.3...v0.18.0</a></p>
<h2>v0.17.3</h2>
<h2>What's Changed</h2>
<ul>
<li>fix: download artifacts as binary blobs and follow redirects by <a
href="https://github.com/Nerixyz"><code>@​Nerixyz</code></a> in <a
href="https://redirect.github.com/ZedThree/clang-tidy-review/pull/118">ZedThree/clang-tidy-review#118</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ZedThree/clang-tidy-review/compare/v0.17.2...v0.17.3">https://github.com/ZedThree/clang-tidy-review/compare/v0.17.2...v0.17.3</a></p>
<h2>v0.17.2</h2>
<h2>What's Changed</h2>
<ul>
<li>fix: artifact download by <a
href="https://github.com/Nerixyz"><code>@​Nerixyz</code></a> in <a
href="https://redirect.github.com/ZedThree/clang-tidy-review/pull/115">ZedThree/clang-tidy-review#115</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ZedThree/clang-tidy-review/compare/v0.17.1...v0.17.2">https://github.com/ZedThree/clang-tidy-review/compare/v0.17.1...v0.17.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/ZedThree/clang-tidy-review/commit/900895863e31d749b3a97e8d4de93f15927d235f"><code>9008958</code></a>
Merge pull request <a
href="https://redirect.github.com/zedthree/clang-tidy-review/issues/119">#119</a>
from Nerixyz/chore/exit-with-comments</li>
<li><a
href="https://github.com/ZedThree/clang-tidy-review/commit/ad2c4db7abdabbc45acae2eea61a0e5d35a0a753"><code>ad2c4db</code></a>
chore: add <code>num_comments_as_exitcode</code> option</li>
<li><a
href="https://github.com/ZedThree/clang-tidy-review/commit/fddb61679ee7c22752af2436323967203d44d4a1"><code>fddb616</code></a>
Merge pull request <a
href="https://redirect.github.com/zedthree/clang-tidy-review/issues/118">#118</a>
from Nerixyz/fix/more-pr</li>
<li><a
href="https://github.com/ZedThree/clang-tidy-review/commit/1d30432c20c44eaecaa73a751591416d4dc9fe4b"><code>1d30432</code></a>
fix: download artifact as blob and follow redirects</li>
<li><a
href="https://github.com/ZedThree/clang-tidy-review/commit/3fb42e9e885549bfa69acb9b53775dd0cd09ab32"><code>3fb42e9</code></a>
deps: update to <code>actions/upload-action@v4</code></li>
<li><a
href="https://github.com/ZedThree/clang-tidy-review/commit/9a32adc734e10e4d84baa60f2b7d7c021568c527"><code>9a32adc</code></a>
Merge pull request <a
href="https://redirect.github.com/zedthree/clang-tidy-review/issues/115">#115</a>
from Nerixyz/fix/pr-stuff</li>
<li><a
href="https://github.com/ZedThree/clang-tidy-review/commit/0b130f269717236c93c2dcbd01c8c80d9136c3e5"><code>0b130f2</code></a>
fix: artifact download</li>
<li>See full diff in <a
href="https://github.com/zedthree/clang-tidy-review/compare/4923dc7cbb13a291cecc8507a89f70ed25ac9ce9...900895863e31d749b3a97e8d4de93f15927d235f">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ZedThree/clang-tidy-review&package-manager=github_actions&previous-version=0.17.1&new-version=0.18.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@justinchuby @gramalingam
Update CI pipeline README (onnx#6086)
be34eba 
1. Replace the azure devops badges with the github actions badge in
README
2. Update pipeline description in CONTRIBUTING
3. Schedule the workflow to run daily to report coverage to codecov.
Fixes onnx#6084

Signed-off-by: Justin Chu <justinchu@microsoft.com>
Co-authored-by: G. Ramalingam <grama@microsoft.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@justinchuby @gramalingam
Enable additional ruff rules (onnx#6032)
2ad849c 
Enable additional ruff rules and apply fixes

---------

Signed-off-by: Justin Chu <justinchu@microsoft.com>
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@gramalingam
Add missing shape inference check for DequantizeLinear (onnx#6080)
ddb2500 
Add missing `hasInputShape` condition in shape-inference for
DequantizeLinear ... strangely missing in last two versions, but present
in earlier version.

Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@thiagocrepaldi @gramalingam
Add bfloat16 to all relevant ops (onnx#6099)
480d74f 
Reland onnx#6079

Fixes onnx#3842
Fixes onnx#6071
Fixes onnx#4051

@gramalingam @justinchuby FYI

Signed-off-by: Thiago Crepaldi <thiagofc@microsoft.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@cjvolzka @gramalingam
Prepare for rel-1.16.1 branch (onnx#6106)
b14706f 
### Description
Prepare for rel-1.16.1 branch

### Motivation and Context
Prepare ONNX 1.16.1 release

Signed-off-by: Charles Volzka <cjvolzka@us.ibm.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@dependabot @gramalingam
Bump reviewdog/action-cpplint from 1.1.0 to 1.2.0 (onnx#6115)
3efccd9 
Bumps
[reviewdog/action-cpplint](https://github.com/reviewdog/action-cpplint)
from 1.1.0 to 1.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/reviewdog/action-cpplint/releases">reviewdog/action-cpplint's
releases</a>.</em></p>
<blockquote>
<h2>Release v1.2.0</h2>
<h2>What's Changed</h2>
<ul>
<li>chore(deps): update python docker tag to v3.12 by <a
href="https://github.com/renovate"><code>@​renovate</code></a> in <a
href="https://redirect.github.com/reviewdog/action-cpplint/pull/36">reviewdog/action-cpplint#36</a></li>
<li>chore(deps): update peter-evans/create-pull-request action to v6 by
<a href="https://github.com/renovate"><code>@​renovate</code></a> in <a
href="https://redirect.github.com/reviewdog/action-cpplint/pull/37">reviewdog/action-cpplint#37</a></li>
<li>chore(deps): update reviewdog to 0.17.3 by <a
href="https://github.com/github-actions"><code>@​github-actions</code></a>
in <a
href="https://redirect.github.com/reviewdog/action-cpplint/pull/38">reviewdog/action-cpplint#38</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/reviewdog/action-cpplint/compare/v1.1.0...v1.2.0">https://github.com/reviewdog/action-cpplint/compare/v1.1.0...v1.2.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/reviewdog/action-cpplint/commit/f4595711c17503b596166b81782d83774541c2d8"><code>f459571</code></a>
Merge pull request <a
href="https://redirect.github.com/reviewdog/action-cpplint/issues/38">#38</a>
from reviewdog/depup/reviewdog</li>
<li><a
href="https://github.com/reviewdog/action-cpplint/commit/506feebbf80747a49c8780d04f945f391df3b326"><code>506feeb</code></a>
chore(deps): update reviewdog to 0.17.3</li>
<li><a
href="https://github.com/reviewdog/action-cpplint/commit/6ea343aecf92344b3c05324b9169cce9e82262a0"><code>6ea343a</code></a>
Merge pull request <a
href="https://redirect.github.com/reviewdog/action-cpplint/issues/37">#37</a>
from reviewdog/renovate/peter-evans-create-pull-reques...</li>
<li><a
href="https://github.com/reviewdog/action-cpplint/commit/d0fe7b088a479bd988c30abbcb6b79a851b566a3"><code>d0fe7b0</code></a>
chore(deps): update peter-evans/create-pull-request action to v6</li>
<li><a
href="https://github.com/reviewdog/action-cpplint/commit/f4008224efd3ea8bebccac9a7e064a963f10ec31"><code>f400822</code></a>
Merge pull request <a
href="https://redirect.github.com/reviewdog/action-cpplint/issues/36">#36</a>
from reviewdog/renovate/python-3.x</li>
<li><a
href="https://github.com/reviewdog/action-cpplint/commit/976d84b9eee9dc8f26476ab6049f20d42143436f"><code>976d84b</code></a>
chore(deps): update python docker tag to v3.12</li>
<li>See full diff in <a
href="https://github.com/reviewdog/action-cpplint/compare/b6c13159b10435813edfddea9e1cd02157544f45...f4595711c17503b596166b81782d83774541c2d8">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=reviewdog/action-cpplint&package-manager=github_actions&previous-version=1.1.0&new-version=1.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@dependabot @gramalingam
Bump mypy from 1.9.0 to 1.10.0 (onnx#6112)
3ebf79d 
Bumps [mypy](https://github.com/python/mypy) from 1.9.0 to 1.10.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/python/mypy/blob/master/CHANGELOG.md">mypy's
changelog</a>.</em></p>
<blockquote>
<h1>Mypy Release Notes</h1>
<h2>Next release</h2>
<h2>Mypy 1.10</h2>
<p>We’ve just uploaded mypy 1.10 to the Python Package Index (<a
href="https://pypi.org/project/mypy/">PyPI</a>). Mypy is a static type
checker for Python. This release includes new features, performance
improvements and bug fixes. You can install it as follows:</p>
<pre><code>python3 -m pip install -U mypy
</code></pre>
<p>You can read the full documentation for this release on <a
href="http://mypy.readthedocs.io">Read the Docs</a>.</p>
<h4>Support TypeIs (PEP 742)</h4>
<p>Mypy now supports <code>TypeIs</code> (<a
href="https://peps.python.org/pep-0742/">PEP 742</a>), which allows
functions to narrow the type of a value, similar to
<code>isinstance()</code>. Unlike <code>TypeGuard</code>,
<code>TypeIs</code> can narrow in both the <code>if</code> and
<code>else</code> branches of an if statement:</p>
<pre lang="python"><code>from typing_extensions import TypeIs
<p>def is_str(s: object) -&gt; TypeIs[str]:
return isinstance(s, str)</p>
<p>def f(o: str | int) -&gt; None:
if is_str(o):
# Type of o is 'str'
...
else:
# Type of o is 'int'
...
</code></pre></p>
<p><code>TypeIs</code> will be added to the <code>typing</code> module
in Python 3.13, but it
can be used on earlier Python versions by importing it from
<code>typing_extensions</code>.</p>
<p>This feature was contributed by Jelle Zijlstra (PR <a
href="https://redirect.github.com/python/mypy/pull/16898">16898</a>).</p>
<h4>Support TypeVar Defaults (PEP 696)</h4>
<p><a href="https://peps.python.org/pep-0696/">PEP 696</a> adds support
for type parameter defaults.
Example:</p>
<pre lang="python"><code>from typing import Generic
from typing_extensions import TypeVar
<p>&lt;/tr&gt;&lt;/table&gt;
</code></pre></p>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/python/mypy/commit/3faf0fc4798ec3ee6b1cd123965193dc0a753fb0"><code>3faf0fc</code></a>
Remove +dev for version for release 1.10</li>
<li><a
href="https://github.com/python/mypy/commit/a5998d20402515f0c0bf05c7fe1029e93aa9bfa8"><code>a5998d2</code></a>
Update CHANGELOG.md (<a
href="https://redirect.github.com/python/mypy/issues/17159">#17159</a>)</li>
<li><a
href="https://github.com/python/mypy/commit/62ea5b01f0c0c99e7db93326cb8d219eecfb3cb6"><code>62ea5b0</code></a>
Various updates to changelog for 1.10 (<a
href="https://redirect.github.com/python/mypy/issues/17158">#17158</a>)</li>
<li><a
href="https://github.com/python/mypy/commit/2f0864c4e55a74700d8ce2d97ab2d3ca2b288513"><code>2f0864c</code></a>
Update CHANGELOG.md with draft for release 1.10 (<a
href="https://redirect.github.com/python/mypy/issues/17150">#17150</a>)</li>
<li><a
href="https://github.com/python/mypy/commit/e1443bbade91118794055449cc8b4b4f7fd08b7d"><code>e1443bb</code></a>
fix: incorrect returned type of access descriptors on unions of types
(<a
href="https://redirect.github.com/python/mypy/issues/16604">#16604</a>)</li>
<li><a
href="https://github.com/python/mypy/commit/5161ac2e5b73dc7597536eb4444219868317e5d9"><code>5161ac2</code></a>
Sync typeshed (<a
href="https://redirect.github.com/python/mypy/issues/17124">#17124</a>)</li>
<li><a
href="https://github.com/python/mypy/commit/e2fc1f28935806ca04b18fab277217f583b51594"><code>e2fc1f2</code></a>
Fix crash when expanding invalid Unpack in a <code>Callable</code> alias
(<a
href="https://redirect.github.com/python/mypy/issues/17028">#17028</a>)</li>
<li><a
href="https://github.com/python/mypy/commit/3ff6e47c57a67e807e0b4579a816b4f66ab16824"><code>3ff6e47</code></a>
Docs: docstrings in checker.py, ast_helpers.py (<a
href="https://redirect.github.com/python/mypy/issues/16908">#16908</a>)</li>
<li><a
href="https://github.com/python/mypy/commit/732d98ecb2a98e4eaea14aba1ed8ac9c1f5ccdb6"><code>732d98e</code></a>
Fix string formatting for string enums (<a
href="https://redirect.github.com/python/mypy/issues/16555">#16555</a>)</li>
<li><a
href="https://github.com/python/mypy/commit/80190101f68b52e960c22572ed6cc814de078b9c"><code>8019010</code></a>
Narrow individual items when matching a tuple to a sequence pattern (<a
href="https://redirect.github.com/python/mypy/issues/16905">#16905</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/python/mypy/compare/1.9.0...v1.10.0">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mypy&package-manager=pip&previous-version=1.9.0&new-version=1.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@dependabot @gramalingam
Bump black from 24.3.0 to 24.4.2 (onnx#6111)
157d20f 
Bumps [black](https://github.com/psf/black) from 24.3.0 to 24.4.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/psf/black/releases">black's
releases</a>.</em></p>
<blockquote>
<h2>24.4.2</h2>
<p>This is a bugfix release to fix two regressions in the new f-string
parser introduced in
24.4.1.</p>
<h3>Parser</h3>
<ul>
<li>Fix regression where certain complex f-strings failed to parse (<a
href="https://redirect.github.com/psf/black/issues/4332">#4332</a>)</li>
</ul>
<h3>Performance</h3>
<ul>
<li>Fix bad performance on certain complex string literals (<a
href="https://redirect.github.com/psf/black/issues/4331">#4331</a>)</li>
</ul>
<h2>24.4.1</h2>
<h3>Highlights</h3>
<ul>
<li>Add support for the new Python 3.12 f-string syntax introduced by
PEP 701 (<a
href="https://redirect.github.com/psf/black/issues/3822">#3822</a>)</li>
</ul>
<h3>Stable style</h3>
<ul>
<li>Fix crash involving indented dummy functions containing newlines (<a
href="https://redirect.github.com/psf/black/issues/4318">#4318</a>)</li>
</ul>
<h3>Parser</h3>
<ul>
<li>Add support for type parameter defaults, a new syntactic feature
added to Python 3.13
by PEP 696 (<a
href="https://redirect.github.com/psf/black/issues/4327">#4327</a>)</li>
</ul>
<h3>Integrations</h3>
<ul>
<li>Github Action now works even when <code>git archive</code> is
skipped (<a
href="https://redirect.github.com/psf/black/issues/4313">#4313</a>)</li>
</ul>
<h2>24.4.0</h2>
<h3>Stable style</h3>
<ul>
<li>Fix unwanted crashes caused by AST equivalency check (<a
href="https://redirect.github.com/psf/black/issues/4290">#4290</a>)</li>
</ul>
<h3>Preview style</h3>
<ul>
<li><code>if</code> guards in <code>case</code> blocks are now wrapped
in parentheses when the line is too long.
(<a
href="https://redirect.github.com/psf/black/issues/4269">#4269</a>)</li>
<li>Stop moving multiline strings to a new line unless inside brackets
(<a
href="https://redirect.github.com/psf/black/issues/4289">#4289</a>)</li>
</ul>
<h3>Integrations</h3>
<ul>
<li>Add a new option <code>use_pyproject</code> to the GitHub Action
<code>psf/black</code>. This will read the
Black version from <code>pyproject.toml</code>. (<a
href="https://redirect.github.com/psf/black/issues/4294">#4294</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/psf/black/blob/main/CHANGES.md">black's
changelog</a>.</em></p>
<blockquote>
<h2>24.4.2</h2>
<p>This is a bugfix release to fix two regressions in the new f-string
parser introduced in
24.4.1.</p>
<h3>Parser</h3>
<ul>
<li>Fix regression where certain complex f-strings failed to parse (<a
href="https://redirect.github.com/psf/black/issues/4332">#4332</a>)</li>
</ul>
<h3>Performance</h3>
<ul>
<li>Fix bad performance on certain complex string literals (<a
href="https://redirect.github.com/psf/black/issues/4331">#4331</a>)</li>
</ul>
<h2>24.4.1</h2>
<h3>Highlights</h3>
<ul>
<li>Add support for the new Python 3.12 f-string syntax introduced by
PEP 701 (<a
href="https://redirect.github.com/psf/black/issues/3822">#3822</a>)</li>
</ul>
<h3>Stable style</h3>
<ul>
<li>Fix crash involving indented dummy functions containing newlines (<a
href="https://redirect.github.com/psf/black/issues/4318">#4318</a>)</li>
</ul>
<h3>Parser</h3>
<ul>
<li>Add support for type parameter defaults, a new syntactic feature
added to Python 3.13
by PEP 696 (<a
href="https://redirect.github.com/psf/black/issues/4327">#4327</a>)</li>
</ul>
<h3>Integrations</h3>
<ul>
<li>Github Action now works even when <code>git archive</code> is
skipped (<a
href="https://redirect.github.com/psf/black/issues/4313">#4313</a>)</li>
</ul>
<h2>24.4.0</h2>
<h3>Stable style</h3>
<ul>
<li>Fix unwanted crashes caused by AST equivalency check (<a
href="https://redirect.github.com/psf/black/issues/4290">#4290</a>)</li>
</ul>
<h3>Preview style</h3>
<ul>
<li><code>if</code> guards in <code>case</code> blocks are now wrapped
in parentheses when the line is too long.
(<a
href="https://redirect.github.com/psf/black/issues/4269">#4269</a>)</li>
<li>Stop moving multiline strings to a new line unless inside brackets
(<a
href="https://redirect.github.com/psf/black/issues/4289">#4289</a>)</li>
</ul>
<h3>Integrations</h3>
<ul>
<li>Add a new option <code>use_pyproject</code> to the GitHub Action
<code>psf/black</code>. This will read the
Black version from <code>pyproject.toml</code>. (<a
href="https://redirect.github.com/psf/black/issues/4294">#4294</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/psf/black/commit/3702ba224ecffbcec30af640c149f231d90aebdb"><code>3702ba2</code></a>
Prepare release 24.4.2 (<a
href="https://redirect.github.com/psf/black/issues/4335">#4335</a>)</li>
<li><a
href="https://github.com/psf/black/commit/e4aaa8a9947d951eb1e69979c3c58e197adbe40f"><code>e4aaa8a</code></a>
Fix incorrect f-string tokenization (<a
href="https://redirect.github.com/psf/black/issues/4332">#4332</a>)</li>
<li><a
href="https://github.com/psf/black/commit/ba88fc372eaed34abb33ea02d6860b185388d928"><code>ba88fc3</code></a>
Simplify string tokenization regexes (<a
href="https://redirect.github.com/psf/black/issues/4331">#4331</a>)</li>
<li><a
href="https://github.com/psf/black/commit/5683242fd432d93c9c37540948a39afd06ea4f7d"><code>5683242</code></a>
New release template</li>
<li><a
href="https://github.com/psf/black/commit/e7fb048281a83733f0b162fc7fa85e48044ea9ec"><code>e7fb048</code></a>
Prepare release 24.4.1 (<a
href="https://redirect.github.com/psf/black/issues/4328">#4328</a>)</li>
<li><a
href="https://github.com/psf/black/commit/3f0f8f1956646fd9f6fc47e133364c1352a478d1"><code>3f0f8f1</code></a>
Support PEP 696 (<a
href="https://redirect.github.com/psf/black/issues/4327">#4327</a>)</li>
<li><a
href="https://github.com/psf/black/commit/2f88085da588d34286bc9a24e288de204f141243"><code>2f88085</code></a>
Github Action: Directly install from repo if <code>export-subst</code>
is skipped (<a
href="https://redirect.github.com/psf/black/issues/4313">#4313</a>)</li>
<li><a
href="https://github.com/psf/black/commit/12ce3db077780ab01cc5ad1f92d5c85fcca3f54c"><code>12ce3db</code></a>
Move changelog entry to right section (<a
href="https://redirect.github.com/psf/black/issues/4326">#4326</a>)</li>
<li><a
href="https://github.com/psf/black/commit/1354be2525e4910b8a0d7c46242eae76963db5d2"><code>1354be2</code></a>
Add support to style function definitions with newlines before function
stubs...</li>
<li><a
href="https://github.com/psf/black/commit/f4b644b82f64d5aa2b8959277c9eb9ebcb16affe"><code>f4b644b</code></a>
Prevent wrapping of multiline fstrings in parens (<a
href="https://redirect.github.com/psf/black/issues/4325">#4325</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/psf/black/compare/24.3.0...24.4.2">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=black&package-manager=pip&previous-version=24.3.0&new-version=24.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@dependabot @justinchuby @gramalingam
Bump ruff from 0.3.5 to 0.4.2 (onnx#6110)
eff7274 
Bumps [ruff](https://github.com/astral-sh/ruff) from 0.3.5 to 0.4.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/astral-sh/ruff/releases">ruff's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.2</h2>
<h2>Changes</h2>
<h3>Rule changes</h3>
<ul>
<li>[<code>flake8-pyi</code>] Allow for overloaded <code>__exit__</code>
and <code>__aexit__</code> definitions (<code>PYI036</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11057">#11057</a>)</li>
<li>[<code>pyupgrade</code>] Catch usages of <code>&quot;%s&quot; %
var</code> and provide an unsafe fix (<code>UP031</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11019">#11019</a>)</li>
<li>[<code>refurb</code>] Implement new rule that suggests min/max over
<code>sorted()</code> (<code>FURB192</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10868">#10868</a>)</li>
</ul>
<h3>Server</h3>
<ul>
<li>Fix an issue with missing diagnostics for Neovim and Helix (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11092">#11092</a>)</li>
<li>Implement hover documentation for <code>noqa</code> codes (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11096">#11096</a>)</li>
<li>Introduce common Ruff configuration options with new server settings
(<a
href="https://redirect.github.com/astral-sh/ruff/pull/11062">#11062</a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>Use <code>macos-12</code> for building release wheels to enable
macOS 11 compatibility (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11146">#11146</a>)</li>
<li>[<code>flake8-blind-expect</code>] Allow raise from in
<code>BLE001</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11131">#11131</a>)</li>
<li>[<code>flake8-pyi</code>] Allow simple assignments to
<code>None</code> in enum class scopes (<code>PYI026</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11128">#11128</a>)</li>
<li>[<code>flake8-simplify</code>] Avoid raising <code>SIM911</code> for
non-<code>zip</code> attribute calls (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11126">#11126</a>)</li>
<li>[<code>refurb</code>] Avoid <code>operator.itemgetter</code>
suggestion for single-item tuple (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11095">#11095</a>)</li>
<li>[<code>ruff</code>] Respect per-file-ignores for <code>RUF100</code>
with no other diagnostics (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11058">#11058</a>)</li>
<li>[<code>ruff</code>] Fix async comprehension false positive
(<code>RUF029</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11070">#11070</a>)</li>
</ul>
<h3>Documentation</h3>
<ul>
<li>[<code>flake8-bugbear</code>] Document explicitly disabling strict
zip (<code>B905</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11040">#11040</a>)</li>
<li>[<code>flake8-type-checking</code>] Mention
<code>lint.typing-modules</code> in <code>TCH001</code>,
<code>TCH002</code>, and <code>TCH003</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11144">#11144</a>)</li>
<li>[<code>isort</code>] Improve documentation around custom
<code>isort</code> sections (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11050">#11050</a>)</li>
<li>[<code>pylint</code>] Fix documentation oversight for
<code>invalid-X-returns</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11094">#11094</a>)</li>
</ul>
<h3>Performance</h3>
<ul>
<li>Use <code>matchit</code> to resolve per-file settings (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11111">#11111</a>)</li>
</ul>
<h2>Contributors</h2>
<ul>
<li><a
href="https://github.com/AlexWaygood"><code>@​AlexWaygood</code></a></li>
<li><a
href="https://github.com/JonathanPlasse"><code>@​JonathanPlasse</code></a></li>
<li><a href="https://github.com/KPCOFGS"><code>@​KPCOFGS</code></a></li>
<li><a
href="https://github.com/KotlinIsland"><code>@​KotlinIsland</code></a></li>
<li><a
href="https://github.com/MichaReiser"><code>@​MichaReiser</code></a></li>
<li><a
href="https://github.com/augustelalande"><code>@​augustelalande</code></a></li>
<li><a
href="https://github.com/autinerd"><code>@​autinerd</code></a></li>
<li><a
href="https://github.com/bersbersbers"><code>@​bersbersbers</code></a></li>
<li><a href="https://github.com/carljm"><code>@​carljm</code></a></li>
<li><a
href="https://github.com/charliermarsh"><code>@​charliermarsh</code></a></li>
<li><a
href="https://github.com/dhruvmanila"><code>@​dhruvmanila</code></a></li>
<li><a
href="https://github.com/ibraheemdev"><code>@​ibraheemdev</code></a></li>
<li><a
href="https://github.com/jfrost-mo"><code>@​jfrost-mo</code></a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md">ruff's
changelog</a>.</em></p>
<blockquote>
<h2>0.4.2</h2>
<h3>Rule changes</h3>
<ul>
<li>[<code>flake8-pyi</code>] Allow for overloaded <code>__exit__</code>
and <code>__aexit__</code> definitions (<code>PYI036</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11057">#11057</a>)</li>
<li>[<code>pyupgrade</code>] Catch usages of <code>&quot;%s&quot; %
var</code> and provide an unsafe fix (<code>UP031</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11019">#11019</a>)</li>
<li>[<code>refurb</code>] Implement new rule that suggests min/max over
<code>sorted()</code> (<code>FURB192</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10868">#10868</a>)</li>
</ul>
<h3>Server</h3>
<ul>
<li>Fix an issue with missing diagnostics for Neovim and Helix (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11092">#11092</a>)</li>
<li>Implement hover documentation for <code>noqa</code> codes (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11096">#11096</a>)</li>
<li>Introduce common Ruff configuration options with new server settings
(<a
href="https://redirect.github.com/astral-sh/ruff/pull/11062">#11062</a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>Use <code>macos-12</code> for building release wheels to enable
macOS 11 compatibility (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11146">#11146</a>)</li>
<li>[<code>flake8-blind-expect</code>] Allow raise from in
<code>BLE001</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11131">#11131</a>)</li>
<li>[<code>flake8-pyi</code>] Allow simple assignments to
<code>None</code> in enum class scopes (<code>PYI026</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11128">#11128</a>)</li>
<li>[<code>flake8-simplify</code>] Avoid raising <code>SIM911</code> for
non-<code>zip</code> attribute calls (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11126">#11126</a>)</li>
<li>[<code>refurb</code>] Avoid <code>operator.itemgetter</code>
suggestion for single-item tuple (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11095">#11095</a>)</li>
<li>[<code>ruff</code>] Respect per-file-ignores for <code>RUF100</code>
with no other diagnostics (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11058">#11058</a>)</li>
<li>[<code>ruff</code>] Fix async comprehension false positive
(<code>RUF029</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11070">#11070</a>)</li>
</ul>
<h3>Documentation</h3>
<ul>
<li>[<code>flake8-bugbear</code>] Document explicitly disabling strict
zip (<code>B905</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11040">#11040</a>)</li>
<li>[<code>flake8-type-checking</code>] Mention
<code>lint.typing-modules</code> in <code>TCH001</code>,
<code>TCH002</code>, and <code>TCH003</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11144">#11144</a>)</li>
<li>[<code>isort</code>] Improve documentation around custom
<code>isort</code> sections (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11050">#11050</a>)</li>
<li>[<code>pylint</code>] Fix documentation oversight for
<code>invalid-X-returns</code> (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11094">#11094</a>)</li>
</ul>
<h3>Performance</h3>
<ul>
<li>Use <code>matchit</code> to resolve per-file settings (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11111">#11111</a>)</li>
</ul>
<h2>0.4.1</h2>
<h3>Preview features</h3>
<ul>
<li>[<code>pylint</code>] Implement <code>invalid-hash-returned</code>
(<code>PLE0309</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10961">#10961</a>)</li>
<li>[<code>pylint</code>] Implement <code>invalid-index-returned</code>
(<code>PLE0305</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/10962">#10962</a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>[<code>pylint</code>] Allow <code>NoReturn</code>-like functions for
<code>__str__</code>, <code>__len__</code>, etc. (<code>PLE0307</code>)
(<a
href="https://redirect.github.com/astral-sh/ruff/pull/11017">#11017</a>)</li>
<li>Parser: Use empty range when there's &quot;gap&quot; in token source
(<a
href="https://redirect.github.com/astral-sh/ruff/pull/11032">#11032</a>)</li>
<li>[<code>ruff</code>] Ignore stub functions in
<code>unused-async</code> (<code>RUF029</code>) (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11026">#11026</a>)</li>
<li>Parser: Expect indented case block instead of match stmt (<a
href="https://redirect.github.com/astral-sh/ruff/pull/11033">#11033</a>)</li>
</ul>
<h2>0.4.0</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/astral-sh/ruff/commit/77c93fd63c1c072501d297082aa59c741b2d5466"><code>77c93fd</code></a>
Bump version to 0.4.2 (<a
href="https://redirect.github.com/astral-sh/ruff/issues/11151">#11151</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/1c9f5e3001da83a7e48aef21ef72d155c8928035"><code>1c9f5e3</code></a>
Display the AST even with syntax errors (<a
href="https://redirect.github.com/astral-sh/ruff/issues/11147">#11147</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/263a0d25edf0e56358a6132158d96f06bf94701b"><code>263a0d2</code></a>
Use <code>macos-12</code> to build release wheels (<a
href="https://redirect.github.com/astral-sh/ruff/issues/11146">#11146</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/4738e199747cdfb7dd82d45b3bd23b715ad0d526"><code>4738e19</code></a>
Remove unused lexical error types (<a
href="https://redirect.github.com/astral-sh/ruff/issues/11145">#11145</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/f428bd5052b9729cb25be4dd74c703308695edab"><code>f428bd5</code></a>
Docs: mention <code>lint.typing-modules</code> in <code>TCH001</code>,
<code>TCH002</code>, <code>TCH003</code> (<a
href="https://redirect.github.com/astral-sh/ruff/issues/11144">#11144</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/4690890e9fc880489007ea557a0c7fcb190d9c73"><code>4690890</code></a>
<code>ruff server</code>: In 'publish diagnostics' mode, document
diagnostics are cleare...</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/19baabba58c55d8c280b701dc5fb346ce19477bd"><code>19baabb</code></a>
README: add Apache Superset to project list (<a
href="https://redirect.github.com/astral-sh/ruff/issues/11136">#11136</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/cee38f39dfb7eaca22eda3c19a4d81adc4097105"><code>cee38f3</code></a>
[<code>flake8-blind-expect</code>] Allow raise from in
<code>BLE001</code> (<a
href="https://redirect.github.com/astral-sh/ruff/issues/11131">#11131</a>)</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/e3fde2814655dd315683833c772d10e6cd55ba08"><code>e3fde28</code></a>
[<code>flake8-pyi</code>] Allow overloaded <code>__exit__</code> and
<code>__aexit__</code> definitions (`PYI0...</li>
<li><a
href="https://github.com/astral-sh/ruff/commit/1c8849f9a8a2e2dcc0849f35fd5c39049a1e4a6e"><code>1c8849f</code></a>
Use Matchit to Resolve Per-File Settings (<a
href="https://redirect.github.com/astral-sh/ruff/issues/11111">#11111</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/astral-sh/ruff/compare/v0.3.5...v0.4.2">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ruff&package-manager=pip&previous-version=0.3.5&new-version=0.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Justin Chu <justinchuby@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Justin Chu <justinchuby@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@mayeut @justinchuby @gramalingam
chore(ci): build and test macOS universal2 wheels on macOS arm64 (onn…
5f2894d 
…x#6117)

### Description
Build and test macOS universal2 wheels on macOS arm64
Removes x86_64 wheels.

### Motivation and Context
`macos-latest` runners moved to macOS 14 running on arm64 hardware.
This is breaking the macOS release pipeline.

This PR rewrites the macOS release pipeline in 2 parts:
- Build universal2 wheels on `macos-latest`
- Test both arm64 & x86_64 parts of the universal2 wheel on
`macos-latest`

The x86_64 wheels have been removed as the universal2 ones can be used
on x86_64.

close onnx#6105

---------

Signed-off-by: mayeut <mayeut@users.noreply.github.com>
Signed-off-by: Justin Chu <justinchuby@users.noreply.github.com>
Co-authored-by: Justin Chu <justinchuby@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@adrianlizarraga @gramalingam
Fix input names for quantize/dequantize ONNX backend tests (onnx#6122)
24d38e3 
### Description
onnx#6123
The input pb files for the following ONNX backend node tests have
incorrect names that do not match the ONNX model:
- test_dequantizelinear_uint4
- test_dequantizelinear_int4
- test_quantizelinear_e4m3fn
- test_quantizelinear_e5m2
- test_quantizelinear_uint4
- test_quantizelinear_int4

### Motivation and Context
The mismatch in input names causes issues when running these backend
tests via ONNX Runtime.

---------

Signed-off-by: adrianlizarraga <adlizarraga@microsoft.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@amankshihab @gramalingam
Corrected the ReduceSumSqure op to match the reference (onnx#6121)
0e9dae7 
### Description
This PR aligns the op implementation for `ReduceSumSquare18` when `axes`
are not specified and `noop_with_empty_axes != 0` with that of the
reference.

### Motivation and Context
Current implementation of `ReduceSumSquare18` when axes are empty and
`noop_with_empty_axes != 1` squares the input data and then returns it,
when according to the reference it should just return the input data
with no changes.

This addresses issue onnx#6103

Signed-off-by: Aman K Shihab <amanshihab276@gmail.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@justinchuby @gramalingam
Revert "Corrected the ReduceSumSqure op to match the reference" (onnx…
55ac116 
…#6125)

Reverts onnx#6121

onnx#6103

cc @xadupre @gramalingam

Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@ramkrishna2910 @gramalingam
Verify model deletion after testing (onnx#6127)
c0a4e83 
### Description
Deletes model downloaded to disk after testing to avoid storage issues.

---------

Signed-off-by: Ramakrishnan Sivakumar <ramkrishna2910@gmail.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@andife @gramalingam
Add/Format License/Copyright headers (onnx#6128)
07a7caf 
### Description
<!-- - Describe your changes. -->

### Motivation and Context
<!-- - Why is this change required? What problem does it solve? -->
<!-- - If it fixes an open issue, please link to the issue here. -->

Signed-off-by: Dr. Andreas Fehlner <fehlner@arcor.de>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@mayeut @justinchuby @gramalingam
fix(ci): install python dependencies with --only-binary :all: in ma…
1f947f7 
…nylinux (onnx#6120)

### Description
Only install python dependencies from wheels in manylinux.

### Motivation and Context
The latest version of google-re2 dropped support for manylinux2014.
google-re2 fails to build from sources thus failing the Linux release
pipelines.

This PR forces installation from wheels on manylinux which thus fallback
on the latest version of google-re2 with a wheel for manylinux2014.

Another solution would be to bump the manylinux images to manylinux_2_28
but that could have impact on downstream users (e.g. impossible to
install wheel from rh7, amazon linux 2, ubuntu 18.04).

Signed-off-by: mayeut <mayeut@users.noreply.github.com>
Co-authored-by: Justin Chu <justinchuby@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@mayeut @gramalingam
fix: install google-re2 with --only-binary option (onnx#6129)
28aba55 
### Description

Only install google-re2 from wheels.

### Motivation and Context

The latest version of google-re2 dropped support for manylinux2014.
google-re2 fails to build from sources thus failing the Linux release
pipelines.

This PR forces installation from wheels on manylinux which thus fallback
on the latest version of google-re2 with a wheel for manylinux2014.
It reverts onnx#6120 which forced all
dependencies to be available as wheels (psutil is not which forbids
installing recent versions of jupyter/ipykernel).

Another solution would be to bump the manylinux images to manylinux_2_28
but that could have impact on downstream users (e.g. impossible to
install wheel from rh7, amazon linux 2, ubuntu 18.04).

Signed-off-by: mayeut <mayeut@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@isdanni @gramalingam
Specify axis parameter for DequantizeLinear when input rank is 1 (onn…
904fd95 
…x#6095)

### Description

Close onnx#6067

Signed-off-by: isdanni <leedanni@gmail.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@dependabot @justinchuby @gramalingam
Bump stefanzweifel/git-auto-commit-action from 5.0.0 to 5.0.1 (onnx#6114
4fe043e 
)

Bumps
[stefanzweifel/git-auto-commit-action](https://github.com/stefanzweifel/git-auto-commit-action)
from 5.0.0 to 5.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/stefanzweifel/git-auto-commit-action/releases">stefanzweifel/git-auto-commit-action's
releases</a>.</em></p>
<blockquote>
<h2>v5.0.1</h2>
<h2>Fixed</h2>
<ul>
<li>Fail if attempting to execute git commands in a directory that is
not a git-repo. (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/326">#326</a>)
<a
href="https://github.com/@ccomendant"><code>@​ccomendant</code></a></li>
</ul>
<h2>Dependency Updates</h2>
<ul>
<li>Bump bats from 1.10.0 to 1.11.0 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/325">#325</a>)
<a
href="https://github.com/@dependabot"><code>@​dependabot</code></a></li>
<li>Bump release-drafter/release-drafter from 5 to 6 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/319">#319</a>)
<a
href="https://github.com/@dependabot"><code>@​dependabot</code></a></li>
</ul>
<h2>Misc</h2>
<ul>
<li>Clarify <code>commit_author</code> input option (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/315">#315</a>)
<a href="https://github.com/@npanuhin"><code>@​npanuhin</code></a></li>
<li>Add step id explanation for output in README.md (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/324">#324</a>)
<a
href="https://github.com/@ChristianVermeulen"><code>@​ChristianVermeulen</code></a></li>
<li>Linux is not UNIX (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/321">#321</a>)
<a href="https://github.com/@couling"><code>@​couling</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/stefanzweifel/git-auto-commit-action/blob/master/CHANGELOG.md">stefanzweifel/git-auto-commit-action's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<p>All notable changes to this project will be documented in this
file.</p>
<p>The format is based on <a
href="http://keepachangelog.com/en/1.0.0/">Keep a Changelog</a>
and this project adheres to <a
href="http://semver.org/spec/v2.0.0.html">Semantic Versioning</a>.</p>
<h2><a
href="https://github.com/stefanzweifel/git-auto-commit-action/compare/v5.0.1...HEAD">Unreleased</a></h2>
<blockquote>
<p>TBD</p>
</blockquote>
<h2><a
href="https://github.com/stefanzweifel/git-auto-commit-action/compare/v5.0.0...v5.0.1">v5.0.1</a>
- 2024-04-12</h2>
<h3>Fixed</h3>
<ul>
<li>Fail if attempting to execute git commands in a directory that is
not a git-repo. (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/326">#326</a>)
<a
href="https://github.com/@ccomendant"><code>@​ccomendant</code></a></li>
</ul>
<h3>Dependency Updates</h3>
<ul>
<li>Bump bats from 1.10.0 to 1.11.0 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/325">#325</a>)
<a
href="https://github.com/@dependabot"><code>@​dependabot</code></a></li>
<li>Bump release-drafter/release-drafter from 5 to 6 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/319">#319</a>)
<a
href="https://github.com/@dependabot"><code>@​dependabot</code></a></li>
</ul>
<h3>Misc</h3>
<ul>
<li>Clarify <code>commit_author</code> input option (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/315">#315</a>)
<a href="https://github.com/@npanuhin"><code>@​npanuhin</code></a></li>
<li>Add step id explanation for output in README.md (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/324">#324</a>)
<a
href="https://github.com/@ChristianVermeulen"><code>@​ChristianVermeulen</code></a></li>
<li>Linux is not UNIX (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/321">#321</a>)
<a href="https://github.com/@couling"><code>@​couling</code></a></li>
</ul>
<h2><a
href="https://github.com/stefanzweifel/git-auto-commit-action/compare/v4.16.0...v5.0.0">v5.0.0</a>
- 2023-10-06</h2>
<p>New major release that bumps the default runtime to Node 20. There
are no other breaking changes.</p>
<h3>Changed</h3>
<ul>
<li>Update node version to node20 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/300">#300</a>)
<a
href="https://github.com/@ryudaitakai"><code>@​ryudaitakai</code></a></li>
<li>Add _log and _set_github_output functions (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/273">#273</a>)
<a
href="https://github.com/@stefanzweifel"><code>@​stefanzweifel</code></a></li>
</ul>
<h3>Fixed</h3>
<ul>
<li>Seems like there is an extra space (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/288">#288</a>)
<a
href="https://github.com/@pedroamador"><code>@​pedroamador</code></a></li>
<li>Fix git-auto-commit.yml (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/277">#277</a>)
<a
href="https://github.com/@zcong1993"><code>@​zcong1993</code></a></li>
</ul>
<h3>Dependency Updates</h3>
<ul>
<li>Bump actions/checkout from 3 to 4 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/302">#302</a>)
<a
href="https://github.com/@dependabot"><code>@​dependabot</code></a></li>
<li>Bump bats from 1.9.0 to 1.10.0 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/293">#293</a>)
<a
href="https://github.com/@dependabot"><code>@​dependabot</code></a></li>
<li>Bump github/super-linter from 4 to 5 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/289">#289</a>)
<a
href="https://github.com/@dependabot"><code>@​dependabot</code></a></li>
<li>Bump bats from 1.8.2 to 1.9.0 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/pull/282">#282</a>)
<a
href="https://github.com/@dependabot"><code>@​dependabot</code></a></li>
</ul>
<h2><a
href="https://github.com/stefanzweifel/git-auto-commit-action/compare/v4.15.4...v4.16.0">v4.16.0</a>
- 2022-12-02</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/8621497c8c39c72f3e2a999a26b4ca1b5058a842"><code>8621497</code></a>
Fail if attempting to execute git commands in a directory that is not a
git-r...</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/b0f4d47f590e46dfe55fea81b3b068cb0aab8678"><code>b0f4d47</code></a>
Bump bats from 1.10.0 to 1.11.0 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/issues/325">#325</a>)</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/9b5e5ee10a5c7b2e05d5f25da265a1c73b24e6a6"><code>9b5e5ee</code></a>
Add step id explanation for output in README.md (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/issues/324">#324</a>)</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/e040c596f0a65570b339c60818081175bcf82d11"><code>e040c59</code></a>
Linux is not UNIX (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/issues/321">#321</a>)</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/4d160c5e4d67c62e67f03ae49aa38359e964139a"><code>4d160c5</code></a>
Bump release-drafter/release-drafter from 5 to 6 (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/issues/319">#319</a>)</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/12f68633e45c72459cd040c868605f2471c7f63b"><code>12f6863</code></a>
Clarify <code>commit_author</code> input option (<a
href="https://redirect.github.com/stefanzweifel/git-auto-commit-action/issues/315">#315</a>)</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/29183a25ec7450c8f6fbab7ff22ccd42d8ab7416"><code>29183a2</code></a>
Remove outdated docs</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/2818fe7949d2daf9e2b5d7d808ca2ca11ccf70ad"><code>2818fe7</code></a>
Add Alert about pull_request_target</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/8d90676eefd6ee2df2214033002d76f2ce6b6989"><code>8d90676</code></a>
Little Doc Updates</li>
<li><a
href="https://github.com/stefanzweifel/git-auto-commit-action/commit/8036286d3751929c947d18324a45433db4ff357f"><code>8036286</code></a>
Use new Markdown Alerts in README</li>
<li>Additional commits viewable in <a
href="https://github.com/stefanzweifel/git-auto-commit-action/compare/8756aa072ef5b4a080af5dc8fef36c5d586e521d...8621497c8c39c72f3e2a999a26b4ca1b5058a842">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=stefanzweifel/git-auto-commit-action&package-manager=github_actions&previous-version=5.0.0&new-version=5.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Justin Chu <justinchuby@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@liqunfu @gramalingam
Pin onnxruntime to 1.17.3 for release CIs (onnx#6143)
f78ca12 
### Description
The latest ORT 1.18.0 does not implement ML ops required for
test_backend_onnxruntime.py. Pin to the previous ort release to pass the
release CIs.

### Motivation and Context
onnx#6138 (comment)

---------

Signed-off-by: Liqun Fu <liqfu@microsoft.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@dependabot @gramalingam
Bump github/codeql-action from 2.13.4 to 3.25.7 (onnx#6156)
bc82149 
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 2.13.4 to 3.25.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/releases">github/codeql-action's
releases</a>.</em></p>
<blockquote>
<h2>CodeQL Bundle v2.17.4</h2>
<p>Bundles CodeQL CLI v2.17.4</p>
<ul>
<li>(<a
href="https://github.com/github/codeql-cli-binaries/blob/HEAD/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql-cli-binaries/releases/tag/v2.17.4">release</a>)</li>
</ul>
<p>Includes the following CodeQL language packs from <a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4"><code>github/codeql@codeql-cli/v2.17.4</code></a>:</p>
<ul>
<li><code>codeql/cpp-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/cpp/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/cpp/ql/src">source</a>)</li>
<li><code>codeql/cpp-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/cpp/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/cpp/ql/lib">source</a>)</li>
<li><code>codeql/csharp-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/csharp/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/csharp/ql/src">source</a>)</li>
<li><code>codeql/csharp-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/csharp/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/csharp/ql/lib">source</a>)</li>
<li><code>codeql/go-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/go/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/go/ql/src">source</a>)</li>
<li><code>codeql/go-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/go/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/go/ql/lib">source</a>)</li>
<li><code>codeql/java-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/java/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/java/ql/src">source</a>)</li>
<li><code>codeql/java-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/java/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/java/ql/lib">source</a>)</li>
<li><code>codeql/javascript-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/javascript/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/javascript/ql/src">source</a>)</li>
<li><code>codeql/javascript-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/javascript/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/javascript/ql/lib">source</a>)</li>
<li><code>codeql/python-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/python/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/python/ql/src">source</a>)</li>
<li><code>codeql/python-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/python/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/python/ql/lib">source</a>)</li>
<li><code>codeql/ruby-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/ruby/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/ruby/ql/src">source</a>)</li>
<li><code>codeql/ruby-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/ruby/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/ruby/ql/lib">source</a>)</li>
<li><code>codeql/swift-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/swift/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/swift/ql/src">source</a>)</li>
<li><code>codeql/swift-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/swift/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.4/swift/ql/lib">source</a>)</li>
</ul>
<h2>CodeQL Bundle v2.17.3</h2>
<p>Bundles CodeQL CLI v2.17.3</p>
<ul>
<li>(<a
href="https://github.com/github/codeql-cli-binaries/blob/HEAD/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql-cli-binaries/releases/tag/v2.17.3">release</a>)</li>
</ul>
<p>Includes the following CodeQL language packs from <a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3"><code>github/codeql@codeql-cli/v2.17.3</code></a>:</p>
<ul>
<li><code>codeql/cpp-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/cpp/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/cpp/ql/src">source</a>)</li>
<li><code>codeql/cpp-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/cpp/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/cpp/ql/lib">source</a>)</li>
<li><code>codeql/csharp-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/csharp/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/csharp/ql/src">source</a>)</li>
<li><code>codeql/csharp-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/csharp/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/csharp/ql/lib">source</a>)</li>
<li><code>codeql/go-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/go/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/go/ql/src">source</a>)</li>
<li><code>codeql/go-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/go/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/go/ql/lib">source</a>)</li>
<li><code>codeql/java-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/java/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/java/ql/src">source</a>)</li>
<li><code>codeql/java-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/java/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/java/ql/lib">source</a>)</li>
<li><code>codeql/javascript-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/javascript/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/javascript/ql/src">source</a>)</li>
<li><code>codeql/javascript-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/javascript/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/javascript/ql/lib">source</a>)</li>
<li><code>codeql/python-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/python/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/python/ql/src">source</a>)</li>
<li><code>codeql/python-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/python/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/python/ql/lib">source</a>)</li>
<li><code>codeql/ruby-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/ruby/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/ruby/ql/src">source</a>)</li>
<li><code>codeql/ruby-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/ruby/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/ruby/ql/lib">source</a>)</li>
<li><code>codeql/swift-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/swift/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/swift/ql/src">source</a>)</li>
<li><code>codeql/swift-all</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/swift/ql/lib/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.3/swift/ql/lib">source</a>)</li>
</ul>
<h2>CodeQL Bundle v2.17.2</h2>
<p>Bundles CodeQL CLI v2.17.2</p>
<ul>
<li>(<a
href="https://github.com/github/codeql-cli-binaries/blob/HEAD/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql-cli-binaries/releases/tag/v2.17.2">release</a>)</li>
</ul>
<p>Includes the following CodeQL language packs from <a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.2"><code>github/codeql@codeql-cli/v2.17.2</code></a>:</p>
<ul>
<li><code>codeql/cpp-queries</code> (<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.2/cpp/ql/src/CHANGELOG.md">changelog</a>,
<a
href="https://github.com/github/codeql/tree/codeql-cli/v2.17.2/cpp/ql/src">source</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<p>Note that the only difference between <code>v2</code> and
<code>v3</code> of the CodeQL Action is the node version they support,
with <code>v3</code> running on node 20 while we continue to release
<code>v2</code> to support running on node 16. For example
<code>3.22.11</code> was the first <code>v3</code> release and is
functionally identical to <code>2.22.11</code>. This approach ensures an
easy way to track exactly which features are included in different
versions, indicated by the minor and patch version numbers.</p>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>3.25.7 - 31 May 2024</h2>
<ul>
<li>We are rolling out a feature in May/June 2024 that will reduce the
Actions cache usage of the Action by keeping only the newest TRAP cache
for each language. <a
href="https://redirect.github.com/github/codeql-action/pull/2306">#2306</a></li>
</ul>
<h2>3.25.6 - 20 May 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.3. <a
href="https://redirect.github.com/github/codeql-action/pull/2295">#2295</a></li>
</ul>
<h2>3.25.5 - 13 May 2024</h2>
<ul>
<li>Add a compatibility matrix of supported CodeQL Action, CodeQL CLI,
and GitHub Enterprise Server versions to the <a
href="https://github.com/github/codeql-action/blob/main/README.md">https://github.com/github/codeql-action/blob/main/README.md</a>.
<a
href="https://redirect.github.com/github/codeql-action/pull/2273">#2273</a></li>
<li>Avoid printing out a warning for a missing <code>on.push</code>
trigger when the CodeQL Action is triggered via a
<code>workflow_call</code> event. <a
href="https://redirect.github.com/github/codeql-action/pull/2274">#2274</a></li>
<li>The <code>tools: latest</code> input to the <code>init</code> Action
has been renamed to <code>tools: linked</code>. This option specifies
that the Action should use the tools shipped at the same time as the
Action. The old name will continue to work for backwards compatibility,
but we recommend that new workflows use the new name. <a
href="https://redirect.github.com/github/codeql-action/pull/2281">#2281</a></li>
</ul>
<h2>3.25.4 - 08 May 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.2. <a
href="https://redirect.github.com/github/codeql-action/pull/2270">#2270</a></li>
</ul>
<h2>3.25.3 - 25 Apr 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.1. <a
href="https://redirect.github.com/github/codeql-action/pull/2247">#2247</a></li>
<li>Workflows running on <code>macos-latest</code> using CodeQL CLI
versions before v2.15.1 will need to either upgrade their CLI version to
v2.15.1 or newer, or change the platform to an Intel MacOS runner, such
as <code>macos-12</code>. ARM machines with SIP disabled, including the
newest <code>macos-latest</code> image, are unsupported for CLI versions
before 2.15.1. <a
href="https://redirect.github.com/github/codeql-action/pull/2261">#2261</a></li>
</ul>
<h2>3.25.2 - 22 Apr 2024</h2>
<p>No user facing changes.</p>
<h2>3.25.1 - 17 Apr 2024</h2>
<ul>
<li>We are rolling out a feature in April/May 2024 that improves the
reliability and performance of analyzing code when analyzing a compiled
language with the <code>autobuild</code> <a
href="https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages#codeql-build-modes">build
mode</a>. <a
href="https://redirect.github.com/github/codeql-action/pull/2235">#2235</a></li>
<li>Fix a bug where the <code>init</code> Action would fail if
<code>--overwrite</code> was specified in
<code>CODEQL_ACTION_EXTRA_OPTIONS</code>. <a
href="https://redirect.github.com/github/codeql-action/pull/2245">#2245</a></li>
</ul>
<h2>3.25.0 - 15 Apr 2024</h2>
<ul>
<li>
<p>The deprecated feature for extracting dependencies for a Python
analysis has been removed. <a
href="https://redirect.github.com/github/codeql-action/pull/2224">#2224</a></p>
<p>As a result, the following inputs and environment variables are now
ignored:</p>
<ul>
<li>The <code>setup-python-dependencies</code> input to the
<code>init</code> Action</li>
<li>The
<code>CODEQL_ACTION_DISABLE_PYTHON_DEPENDENCY_INSTALLATION</code>
environment variable</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/github/codeql-action/commit/f079b8493333aace61c81488f8bd40919487bd9f"><code>f079b84</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2317">#2317</a>
from github/update-v3.25.7-a095bf2a1</li>
<li><a
href="https://github.com/github/codeql-action/commit/e1a42688dbe6ce54cc33e2b6b65fc02abdb09762"><code>e1a4268</code></a>
Update changelog for v3.25.7</li>
<li><a
href="https://github.com/github/codeql-action/commit/a095bf2a16b83cb3b52e6adba696c70f41e82864"><code>a095bf2</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2313">#2313</a>
from github/revert-2312-update-bundle/codeql-bundle-...</li>
<li><a
href="https://github.com/github/codeql-action/commit/bbd4e19f51d83bb98b025b83b255e44eaa1a1e7f"><code>bbd4e19</code></a>
Revert &quot;Update default bundle to 2.17.4&quot;</li>
<li><a
href="https://github.com/github/codeql-action/commit/9ab5d16a3df4885b74bb18ab349bcc6c253ee3e0"><code>9ab5d16</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2312">#2312</a>
from github/update-bundle/codeql-bundle-v2.17.4</li>
<li><a
href="https://github.com/github/codeql-action/commit/028346e1ff2c03a735c6527b84f0a3179f2092b0"><code>028346e</code></a>
Add changelog note</li>
<li><a
href="https://github.com/github/codeql-action/commit/5fe08473f8b98c47563f401bed5134a59ce06dee"><code>5fe0847</code></a>
Update default bundle to codeql-bundle-v2.17.4</li>
<li><a
href="https://github.com/github/codeql-action/commit/9550da953dd3b29aedf76cd635101e48eae5eebd"><code>9550da9</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2311">#2311</a>
from github/henrymercer/pack-missing-auth-config-error</li>
<li><a
href="https://github.com/github/codeql-action/commit/6548a4d65ce2414afca98f8368cabfff0541ba18"><code>6548a4d</code></a>
Add configuration error for missing auth to package registry</li>
<li><a
href="https://github.com/github/codeql-action/commit/7927df07e268eafe499c344cd19f8bf82f4f19f7"><code>7927df0</code></a>
Bump micromatch from 4.0.5 to 4.0.7 in the npm group (<a
href="https://redirect.github.com/github/codeql-action/issues/2310">#2310</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/github/codeql-action/compare/cdcdbb579706841c47f7063dda365e292e5cad7a...f079b8493333aace61c81488f8bd40919487bd9f">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=2.13.4&new-version=3.25.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@dependabot @gramalingam
Bump ossf/scorecard-action from 2.3.1 to 2.3.3 (onnx#6154)
0a4e184 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action)
from 2.3.1 to 2.3.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/ossf/scorecard-action/releases">ossf/scorecard-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.3.3</h2>
<blockquote>
<p>[!NOTE]<br />
There is no v2.3.2 release as a step was skipped in the release process.
This was fixed and re-released under the v2.3.3 tag</p>
</blockquote>
<h2>What's Changed</h2>
<ul>
<li>:seedling: Bump github.com/ossf/scorecard/v4 (v4.13.1) to
github.com/ossf/scorecard/v5 (v5.0.0-rc1) by <a
href="https://github.com/spencerschrock"><code>@​spencerschrock</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1366">ossf/scorecard-action#1366</a></li>
<li>:seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to
v5.0.0-rc2 by <a
href="https://github.com/spencerschrock"><code>@​spencerschrock</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1374">ossf/scorecard-action#1374</a></li>
<li>:seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to
v5.0.0-rc2.0.20240509182734-7ce860946928 by <a
href="https://github.com/spencerschrock"><code>@​spencerschrock</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1377">ossf/scorecard-action#1377</a></li>
</ul>
<p>For a full changelist of what these include, see the <a
href="https://github.com/ossf/scorecard/releases/tag/v5.0.0-rc1">v5.0.0-rc1</a>
and <a
href="https://github.com/ossf/scorecard/releases/tag/v5.0.0-rc2">v5.0.0-rc2</a>
release notes.</p>
<h3>Documentation</h3>
<ul>
<li>:book: Move token discussion out of main README. by <a
href="https://github.com/spencerschrock"><code>@​spencerschrock</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1279">ossf/scorecard-action#1279</a></li>
<li>:book: link to <code>ossf/scorecard</code> workflow instead of
maintaining an example by <a
href="https://github.com/spencerschrock"><code>@​spencerschrock</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1352">ossf/scorecard-action#1352</a></li>
<li>:book: update api links to new scorecard.dev site by <a
href="https://github.com/spencerschrock"><code>@​spencerschrock</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1376">ossf/scorecard-action#1376</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ossf/scorecard-action/compare/v2.3.1...v2.3.3">https://github.com/ossf/scorecard-action/compare/v2.3.1...v2.3.3</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/ossf/scorecard-action/commit/dc50aa9510b46c811795eb24b2f1ba02a914e534"><code>dc50aa9</code></a>
:seedling: Bump docker tag for v2.3.3 release (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1368">#1368</a>)</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/8ff570017382a0ef795f21f71e519b27a9b5f29e"><code>8ff5700</code></a>
:seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to
v5.0.0-rc2.0....</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/8ba5e73d11a5fd0917494d02ab01dfd7866d2191"><code>8ba5e73</code></a>
update api links to new scorecard.dev site (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1376">#1376</a>)</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/92ddde3eaffd7e147638317c023642a6adc8a874"><code>92ddde3</code></a>
Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to v5.0.0-rc2 (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1374">#1374</a>)</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/6c55905542a1ce814c7ec177a96904f5bc74aab5"><code>6c55905</code></a>
:seedling: Bump golang.org/x/net from 0.24.0 to 0.25.0 (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1373">#1373</a>)</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/09bb953b6a0e34c84fb453985435a07cc2baa3a3"><code>09bb953</code></a>
:seedling: Bump distroless/base in the docker-images group (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1372">#1372</a>)</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/1511e1305b9d7e51245388421563264573c77bc7"><code>1511e13</code></a>
:seedling: Bump the github-actions group across 1 directory with 6
updates (#...</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/df66cd8fd834fab4483ac0031b8d8ff819b62422"><code>df66cd8</code></a>
:seedling: Bump the docker-images group with 2 updates (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1370">#1370</a>)</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/fad9a3cc533bb069b1f01f272f1f630895cd690a"><code>fad9a3c</code></a>
:seedling: Bump distroless/base in the docker-images group (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1364">#1364</a>)</li>
<li><a
href="https://github.com/ossf/scorecard-action/commit/1e01a309c1de65b6221c25768bcfc322bac8ccee"><code>1e01a30</code></a>
:seedling: Bump the github-actions group with 3 updates (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1365">#1365</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/ossf/scorecard-action/compare/0864cf19026789058feabb7e87baa5f140aac736...dc50aa9510b46c811795eb24b2f1ba02a914e534">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ossf/scorecard-action&package-manager=github_actions&previous-version=2.3.1&new-version=2.3.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@adrianlizarraga @dependabot @gramalingam
Fix INT4 TensorProto byte size is 5x larger than expected with negati…
20a0bae 
…ve values (onnx#6161)

### Description
Fixes onnx#6160

Ensures that two 4-bit elements are packed as a single [unsigned] uint8
value within the `int32_data` field. Otherwise, the size of an int4
tensor increases up 5x when the tensor contains negative data values.
Please refer to the above issue for more details.

### Motivation and Context
Certain models with INT4 weights were much larger than expected.

---------

Signed-off-by: adrianlizarraga <adlizarraga@microsoft.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@xadupre @gramalingam
CI:apply auto updated documentation/backend test data
ad73074 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@gramalingam
Undo test case addition
2f69ec9 
Signed-off-by: Ganesan Ramalingam <grama@microsoft.com>
@gramalingam gramalingam requested a review from a team as a code owner June 6, 2024 19:22
@gramalingam
Copy link
Contributor Author

Hmmm. The PR is messed up, following the instructions for signing off my last commit :-(. Closing it. May need to create a new one.

@gramalingam gramalingam closed this Jun 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@postrational postrational postrational approved these changes

@xadupre xadupre xadupre approved these changes

Assignees

@gramalingam gramalingam

Labels
operator Issues related to ONNX operators review needed: operators approvers Require reviews from members of operators-approvers spec clarification Clarification of the ONNX spec needed
Projects
PR Tracker
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet