Build(deps): Bump apache-airflow from 3.1.7 to 3.1.8

[dependabot]

Bumps apache-airflow from 3.1.7 to 3.1.8.

Release notes

Sourced from apache-airflow's releases.

Apache Airflow 3.1.8

📦 PyPI: https://pypi.org/project/apache-airflow/3.1.8/ 📚 Docs: https://airflow.apache.org/docs/apache-airflow/3.1.8/ 🛠️ Release Notes: https://airflow.apache.org/docs/apache-airflow/3.1.8/release_notes.html 🐳 Docker Image: "docker pull apache/airflow:3.1.8" 🚏 Constraints: https://github.com/apache/airflow/tree/constraints-3.1.8

Significant Changes

Backfill permissions are now handled via DagAccessEntity.Run (#61456)

is_authorized_backfill of the BaseAuthManager interface has been removed. Core will no longer call this method and their provider counterpart implementation will be marked as deprecated. Permissions for backfill operations are now checked against the DagAccessEntity.Run permission using the existing requires_access_dag decorator. In other words, if a user has permission to run a DAG, they can perform backfill operations on it.

Please update your security policies to ensure that users who need to perform backfill operations have the appropriate DagAccessEntity.Run permissions. (Users having the Backfill permissions without having the DagRun ones will no longer be able to perform backfill operations without any update)

Elasticsearch is now fully compatible with remote logging along (#62940)

Elasticsearch is now fully compatible with remote logging along side with apache-airflow-providers-elasticsearch>=6.5.0. Please review elasticsearch provider release notes for more information https://airflow.apache.org/docs/apache-airflow-providers-elasticsearch/6.5.0/changelog.html (#62121) (#62940)

Bug Fixes

• Fix SQLite migration disable disable_sqlite_fkeys in revision 509b94a1042d (#63256) (#63272)
• Fix: 404 queued asset events from API server logs (#62934) (#62976)
• Fix: Always include kid in JWT header for symmetric key tokens (#62883) (#62943)
• Fix: Scope session token in cookie to base_url (#62771) (#62851)
• Fix: UI of Scope session token in cookie to base_url (#62771) (#62859)
• Fix: UI tasks log missing in UP_FOR_RETRY and UP_FOR_RESCHEDULE states (#54547) (#62862)
• Fix: Backfill permissions (#62856) (#62873)
• Fix: Use useAssetServiceGetDagAssetQueuedEvents to get the correct number of ADRQs (#62868) (#62902)
• Fix: Adds task instance validation for HITL (#62886) (#62909)
• Fix: Restore task_instance_history sequence on downgrade (#62759)
• Fix broken dag_processing.total_parse_time metric (#62128) (#62764)
• Fix Trigger UI form rendering for null enum values (#62060) (#62767)
• Fix timer.duration unit labels in logs (#61824) (#62757)
• Fix XCom migration failing for NaN/Infinity float values (#62686) (#62760)
• Fix SQL not rendered in Rendered Templates view (#60739) (#62348)
• Fix missing DAG read permission checks on dependencies endpoint (#62046) (#62586)
• Changed dag_bundle.signed_url_template from varchar(200) to text (#61041) (#62568)
• Fix WASB remote logging base path handling (#58946) (#61013) (#62456)
• Handle non-dictionary json payload during logging to avoid internal server error. (#62355) (#62367)
• Fix grid view crash when task converted to TaskGroup (#61208) (#61279) (#62181)
• Fix running task duration showing as null in UI (#61898) (#62136)
• Fix deferrable sensors not respecting soft_fail on timeout (#61132) (#61421)
• Fix task failure details being obscured by finalization errors (#62070) (#62113)
• Add missing ti.start and ti.finish metrics in Airflow 3 (#62019) (#62110)
• Fix DepContext mutation leak and restore reschedule-mode guard (#62089)
• Fix scheduler heartbeat misses caused by slow reschedule dependency check (#61983) (#62068)
• Flush in-memory OTEL metrics at process shutdown (#61808) (#61869)

... (truncated)

Commits

• 7c1b4e1 Update RELEASE_NOTES.rst for rc2
• 8bebae6 [v3-1-test] Further limit setuptools after 82.0.1 is released (until redoc fi...
• 3476670 fix(migration): disable disable_sqlite_fkeys for migration 0087 (#63256) (#63...
• 0f3cc0a Update RELEASE_NOTES.rst
• 1b366dd Update version to 3.1.8
• c4290ab [v3-1-test] Return empty list for queued asset events instead of 404 (#62934)...
• 363e75a [v3-1-test] Only upgrade patch and minor NPM version in v3-1-test (#62961) ...
• b7a0043 chore(deps): bump the core-ui-package-updates group across 1 directory with 3...
• a250c4f [v3-1-test] Enable dependabot for simple auth manager in v3-1-test (#62951)...
• 833ef0f Upgrade tar (#62939) (#62947)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.