chore(deps): bump narwhals from 2.20.0 to 2.21.0

[dependabot]

Bumps narwhals from 2.20.0 to 2.21.0.

Release notes

Sourced from narwhals's releases.

Narwhals v2.21.0

Changes

✨ Enhancements

• feat: expressify str.{starts,ends}_with (#3601)
• feat: Add Expr.quantile for spark-like backends (#3568)

🐞 Bug fixes

• fix: Fix over with partition_by and order_by with scrambed groups for pandas (#3603)
• fix: Add fallback for incompatible string concenation in pandas (#3548)
• fix: Allow float('nan') as value in join for duckdb (#3555)
• [fix]: Fix bug in ibis where log base is not set to e by default (#3596)

📖 Documentation

• ci: Add check for building docs in strict mode (#3591)
• docs: Clarify behavior of Expr.over(order_by=...) (#3549)
• docs: Add note on return type of columns property (#3575)
• adding pysummaries to packages using narwhals (#3580)
• docs: Add OpenSSF and LFX Health score cards (#3576)
• docs: Add missing exceptions in api-reference (#3574)
• fix(docs): Include dask and ibis in docs dependencies (#3562)
• fix(docs): Include dask and ibis in docs dependencies (#3562)

🛠️ Other improvements

• chore(python): bump pyrefly (#3604)
• chore: expand on security.md; add permission to check-docs-build workflow (#3599)
• chore: remove unnecessary issubclass check in native_to_narwhals_dtype in _polars (#3594)
• chore: use pandas in get_categories to avoid polars categorical flakiness (#3592)
• chore: uppercase no_default sentinel (#3587)
• chore: fix defaults for strict in to_native v1 overloads (#3586)
• chore: run Pyrefly on tests (#3563)
• ci: temporarily pin Pyright (#3585)
• chore(python): pin pyarrow version in typing job, adjust tests for pyarrow 24 (#3561)
• ci: Fixup darts downstream job (#3597)
• [pre-commit.ci] pre-commit autoupdate (#3595)
• ci: Pin GHA to a full length commit SHA; add permissions; add CodeQL check (#3577)
• feat: Add {Expr,Series}.str.to_time (#3538)
• fix: pandas-like quantile in group-by context (#3583)
• ci: Add scorecard github action (#3573)
• test: The Asia/Katmandu timezone is deprecated (#3565)

Thank you to all our contributors for making this release possible! @​FBruzzesi, @​MarcoGorelli, @​camriddell, @​dependabot[bot], @​ofajardo, @​pedro-villanueva-bcom, @​pre-commit-ci[bot], dependabot[bot] and pre-commit-ci[bot]

Commits

• 14294a5 release: Bump version to 2.21.0
• 7768cd2 chore(python): bump pyrefly (#3604)3
• 64a3ca8 feat: expressify str.{starts,ends}_with (#3601)
• ee03c38 fix: Fix over with partition_by and order_by with scrambed groups for p...
• e7a1387 fix: Add fallback for incompatible string concenation in pandas (#3548)
• f8920a5 chore: expand on security.md; add permission to check-docs-build workflow (#3...
• 5ae8e0c ci: Fixup darts downstream job (#3597)
• b07d2d9 [Enh]: Fix bug in ibis where log base is not set to e by default (#3596)
• e7564ec ci: Add check for building docs in strict mode (#3591)
• 0f1a236 docs: Clarify behavior of Expr.over(order_by=...) (#3549)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #3212.