Bump langchain-core from 1.2.6 to 1.2.7

[dependabot]

Bumps langchain-core from 1.2.6 to 1.2.7.

Release notes

Sourced from langchain-core's releases.

langchain-core==1.2.7

Changes since langchain-core==1.2.6

release: langchain-core 1.2.7 (#34678) fix: don't trace injected args only found in signature (#34670) feat(core): add more file extensions to ignore in HTML link extraction (#34552) refactor(core): improve docstrings for HTML link extraction utilities (#34550) test(core): add edge case for empty examples in LengthBasedExampleSelector (#34641) fix(core): fix strict schema generation for functions with optional args (#34599) feat(core): support custom message separator in get_buffer_string() (#34569) refactor(core): add warning for fallback GPT-2 tokenizer usage (#34621) fix(core,langchain): use get_buffer_string for message summarization (#34607) test(core): add tests for formatting utils and merge functions (#34511) fix(core): strip message IDs from cache keys using model_copy (#33915) fix(core): exclude injected args from tool schema (#34582) refactor(core): select chunk_id via ranking and remove extra allocation (#34588)

Commits

• 2e87445 fix(langchain,langchain-classic): more descriptive error msg when dep is not ...
• 19edaa8 chore(openai): delete outdated test (#34682)
• 384158d fix(langchain): infer provider from mixed-case prefixes (#34672)
• c080296 release: langchain-core 1.2.7 (#34678)
• 323c765 fix: add test confirming we don't inject args based on args_schema alone (#...
• ed2aa9f fix: don't trace injected args only found in signature (#34670)
• 76da99e release(langchain): 1.2.3 (#34668)
• 2847814 feat(core): add more file extensions to ignore in HTML link extraction (#34552)
• d383f00 refactor(langchain): engage summarization based on reported usage_metadata ...
• 50c5bb5 refactor(core): improve docstrings for HTML link extraction utilities (#34550)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[gvatsal60]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (0)
✅	Code Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud