Evening folks, I apologize if this is not the appropriate venue for this request; if that's the case, please let me know where I should be asking:
Earlier this month Dependabot flagged a security vulnerability with PyArrow which prompted us to do an upgrade from v10 to v14.1 of the software. Obviously this is a lot of major versions so the upgrade was subjected to a bunch of tests but, alas, there was a breaking change to the way PyArrow handled time precision that slipped through the cracks. Upon review I'm not sure how that change could possibly have been caught. The change-logs for the package are a verbose dump of all of the PRs included in the release. Working out which of them constitute a breaking change and what the implications are of that change is difficult. Is this something that could be addressed in the project? -- Best, Chris Thomas Engineering Manager - Feature Team 540.808.2782
