Skip to content

chore(deps): update candle-nn requirement from 0.8.0 to 0.9.1#79

Merged
iberi22 merged 1 commit intomainfrom
dependabot/cargo/candle-nn-0.9.1
Dec 20, 2025
Merged

chore(deps): update candle-nn requirement from 0.8.0 to 0.9.1#79
iberi22 merged 1 commit intomainfrom
dependabot/cargo/candle-nn-0.9.1

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 11, 2025
edited
Loading

Updates the requirements on candle-nn to permit the latest version.

Changelog

Sourced from candle-nn's changelog.

Changelog

This documents the main changes to the candle crate.

v0.3.1 - Unreleased

Added

Modified

v0.3.0 - 2023-10-01

Added

  • Added the Mistral 7b v0.1 model 983.
  • Quantized version of the Mistral model 1009.
  • Add the gelu-erf op and activation function 969.
  • Add the mixformer/phi-v1.5 model 930.
  • Add the sclice-scatter op 927.
  • Add the Wuerstchen diffusion model 911.

Modified

  • Support for simd128 intrinsics in some quantized vecdots 982.
  • Optimize the index-select cuda kernel 976.
  • Self-contained safetensor wrappers 946.

v0.2.2 - 2023-09-18

Added

  • Support for top_p sampling 819.
  • T5 model including decoding 864.
  • 1-d upsampling 839.

Modified

  • Bugfix for conv2d 820.
  • Support tensor based indexing using .i 842.

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Dependency updates from Dependabot quarantine Dependency in quarantine period labels Dec 11, 2025
@coderabbitai
Copy link

coderabbitai bot commented Dec 11, 2025

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

@github-actions
Copy link
Contributor

github-actions bot commented Dec 11, 2025

🛡️ Dependency Sentinel Check

This dependency update has been received and will follow the Git-Core Protocol lifecycle:

📋 Quarantine Protocol (14 Days)

Phase Status Date
🔬 Quarantine Start NOW 2025-12-11
🧠 AI Analysis 🔄 Pending -
🔍 Community Monitoring 🔄 Active -
🎓 Graduation ⏳ Scheduled 2025-12-25

🤖 AI Analysis Queue

The following AI agents will analyze this update:

  • Gemini 3 Pro - Risk assessment, breaking changes
  • CodeRabbit - Code patterns, best practices
  • Copilot - Final meta-analysis (post-bots)

⚠️ Architecture Check

Before adoption, this update will be validated against:

  • .✨/ARCHITECTURE.md - Critical decisions
  • docs/agent-docs/RESEARCH_STACK_CONTEXT.md - Living context

📖 Protocol Reference

Dependency Quarantine Rule: Versions < 2 weeks old are in quarantine. Never use bleeding-edge dependencies in production.

Managed by Git-Core Protocol Dependency Sentinel

@dependabot dependabot bot force-pushed the dependabot/cargo/candle-nn-0.9.1 branch from 66ab2ed to 54b0235 Compare December 20, 2025 16:49
@dependabot
chore(deps): update candle-nn requirement from 0.8.0 to 0.9.1
d0283a4 
Updates the requirements on [candle-nn](https://github.com/huggingface/candle) to permit the latest version.
- [Changelog](https://github.com/huggingface/candle/blob/main/CHANGELOG.md)
- [Commits](huggingface/candle@0.8.0...0.9.1)

---
updated-dependencies:
- dependency-name: candle-nn
  dependency-version: 0.9.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/cargo/candle-nn-0.9.1 branch from 54b0235 to d0283a4 Compare December 20, 2025 16:58
@iberi22 iberi22 merged commit b417855 into main Dec 20, 2025
4 of 5 checks passed
@iberi22 iberi22 deleted the dependabot/cargo/candle-nn-0.9.1 branch December 20, 2025 17:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@iberi22 iberi22 iberi22 approved these changes

Assignees

No one assigned

Labels

dependencies Dependency updates from Dependabot quarantine Dependency in quarantine period

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@iberi22