chore(deps-dev)(deps-dev): bump the python-dependencies group with 2 updates

[dependabot]

Bumps the python-dependencies group with 2 updates: marimo and pandas.

Updates marimo from 0.21.1 to 0.22.4

Release notes

Sourced from marimo's releases.

0.22.0

What's Changed

This release brings a unified data table explorer, reliability improvements to the programmatic notebook API that power the new marimo-pair agent skill, smarter numeric formatting in tables, faster mo.persistent_cache, and a contextual tips system in the CLI.

⭐ Highlights

Combined row viewer and column explorer

The row viewer and column explorer panels are now unified into a single tabbed "Table Explorer" pane. A single toolbar button opens and closes the panel; Rows and Columns tabs live inside it, and your selected tab persists across open/close.

Pair programming with marimo-pair

The experimental _code API receives reliability fixes in this release, enabling the new marimo-pair agent skill for pair programming in marimo notebooks.

npx skills add marimo-team/marimo-pair

🚨 Breaking changes

mo.image no longer normalizes uint8 values (#8889)

Previously, mo.image() normalized all numeric arrays (including uint8) to the [0, 1] float range. Now, uint8 arrays are always rendered with values in [0, 255] without normalization. Two new parameters — vmin and vmax — let you set explicit value bounds for under- or over-saturated displays. If you relied on the old uint8 normalization, pass vmin=0, vmax=1 explicitly.

__marimo__ location now follows sys.pycache_prefix (#8797)

The __marimo__ directory now respects sys.pycache_prefix, consistent with Python's own __pycache__ placement. This also fixes cache placement for notebooks in nested directories. Existing caches will not be migrated — they can be safely deleted.

Cache version bump (#8793)

The cache format version has been bumped, invalidating existing caches.

✨ Enhancements

• Remove auto-instantiate from /api/execute endpoint (#8943)
• Use document as source of truth in code_mode _apply_ops (#8944)
• Enhance SQLAlchemy engine with safe_execute and inspector methods for SnowFlake (#8920)
• Support custom cloudpathlib providers in path normalization (#8929)
• Use variable name as download filename in dataframe viewer (#8811)
• Unify row viewer and column explorer (#8905)
• Fix hide_code not taking effect on kernel-created cells (#8926)
• Virtualize data table rows when pagination is disabled (#8899)
• Emit document transactions from --watch file reload (#8846)
• Remove document mutation from session.notify() (#8886)
• Style fix for li & ol: reduce margin and restore original disc (#8768)
• Avoid selecting cells in table when interactive elements (#8862)
• Lazy-load KaTeX via dynamic import of @​streamdown/math (#8874)
• Display startup tips in CLI (#8836)
• Add ListSQLSchemas to support lazy schema fetching in datasource panel (#8824)

... (truncated)

Commits

• b59cb0e release: 0.22.4 (#9040)
• e787d17 fix: make _CellsView iterate over NotebookCell objects instead of cell IDs (#...
• c945acd fix: anywidget test (#9038)
• 280a1f6 fix: show which cell defines a variable in multiply-defined error (#9037)
• 34f87a5 Add option to display error tracebacks inline and in modal (#8376)
• e62767d feat: add concise repr to NotebookCell for better REPL discoverability (#...
• eba1740 Surface cell errors from _code_mode through scratchpad (#9030)
• 611afac fix: gracefully handle delete of unknown cell and read document on reconnect ...
• 4f345a2 feat: add repr, find(), and grep() to _CellsView and improve KeyError mes...
• cf3d07a Pass model_id as data attribute to prevent loss on value update (#9032)
• Additional commits viewable in compare view

Updates pandas from 3.0.1 to 3.0.2

Release notes

Sourced from pandas's releases.

pandas 3.0.2

We are pleased to announce the release of pandas 3.0.2. This is a patch release in the 3.0.x series and includes some regression fixes and bug fixes. We recommend that all users of the 3.0.x series upgrade to this version.

See the full whatsnew for a list of all the changes.

Pandas 3.0 supports Python 3.11 and higher. The release can be installed from PyPI:

python -m pip install --upgrade pandas==3.0.*

Or from conda-forge

conda install -c conda-forge pandas=3.0

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

Commits

• ab90747 RLS: 3.0.2 (#64934)
• 6f27013 Backport PR #64931 on branch 3.0.x (DOC/BLD: temporary disable upload of docs...
• 48ddc60 Backport PR #64664 on branch 3.0.x (BUG: DataFrame.sum() crashes on empty Dat...
• 8774488 [backport 3.0.x] PERF: fix slow python loop in validation for ArrowStringArra...
• 33af6cc Backport PR #64133 on branch 3.0.x (BUG: str.find returns byte offset instead...
• 4ef49d8 [backport 3.0.x] BUG: fix convert_dtypes dropping values from sliced mixed-dt...
• 0668f34 [backport 3.0.x] BUG: Fix HDFStore.put with StringDtype columns and compressi...
• 23f2f44 [backport 3.0.x] BUG: Suppress unnecessary RuntimeWarning in to_datetime with...
• 83ba804 Backport PR #64886: BUG: Compute Variance of Complex Numbers Correctly (#64892)
• bb5ca1a Backport PR #64386 on branch 3.0.x (BUG: fix sort_index AssertionError with R...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dependencies, python. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.