Bump lightgbm from 3.3.5 to 4.1.0

[dependabot[bot]]

Bumps lightgbm from 3.3.5 to 4.1.0.

Release notes

Sourced from lightgbm's releases.

v4.1.0

Changes

💡 New Features

• Treat position bias via GAM in LambdaMART @​metpavel (#5929)

🐛 Bug Fixes

• Fix updates in random forest model using GOSS data sample strategy @​mjmckp (#6017)
• [R-package] Fix misdetected objective when passing lgb.Dataset instance to lightgbm() @​david-cortes (#6005)
• [python-package] make it possible to build wheels without internet connection (fixes #5979) @​jameslamb (#6042)
• fix percentile computation for regression objectives @​zachary62 (#5848)
• [CUDA] Set GPU device ID in threads @​shiyu1994 (#6028)
• [R-package] Fix error when passing categorical features to lightgbm() (fixes #6000) @​david-cortes (#6003)
• [R-package] limit number of threads used in tests and examples (fixes #5987) @​jameslamb (#5988)

📖 Documentation

• [python-package] [docs] Update key format of eval_hist in docstring example @​Alnusjaponica (#5980)
• [docs] add vaex-ml to list of external repositories @​jameslamb (#6085)
• [ci] [docs] fix broken ACM links @​jameslamb (#6083)
• [docs] Fix typo in README @​kyleengel (#6071)
• [docs] fix broken links @​jameslamb (#6059)
• Fix Python Dockerfile @​GyuminJack (#5984)

🧰 Maintenance

• Release v4.1.0 @​jameslamb (#6076)
• Remove superfluous todo from gitignore @​borchero (#6081)
• [python-package] simplify processing of pandas data @​jameslamb (#6066)
• [ci] [R-package] test against R 4.3 on Linux and macOS @​jameslamb (#6075)
• reduce verbosity of some log messages @​jameslamb (#6073)
• [python-package] remove CVBooster._append() @​jameslamb (#6057)
• [python-package] use dataclass for CallbackEnv @​jameslamb (#6048)
• [ci] [python-package] add more linting checks @​jameslamb (#6049)
• [ci] prevent lock-threads from locking issues with label 'feature request' @​jameslamb (#6047)
• [ci] add bot to lock inactive issues and PRs @​jameslamb (#6037)
• [ci] fix GPG key download for R Linux jobs (fixes #6038) @​jameslamb (#6039)
• [ci] enforce dask version to be >=2023.5.0 in some builds (fixes #6030) @​shiyu1994 (#6032)
• [ci] [R-package] use {lintr} 3.1 @​jameslamb (#5997)
• [python-package] replace np.find_common_type with np.result_type @​jmoralez (#5999)
• [ci] simplify CODEOWNERS @​jameslamb (#5998)
• [R-package] consolidate testing constants in helpers file @​jameslamb (#5992)
• [R-package] remove unused internal variables @​jameslamb (#5991)
• [ci] use newer h5py in AppVeyor jobs (fixes #5995) @​jameslamb (#5996)
• [python-package] make _InnerPredictor construction stricter @​jameslamb (#5961)

---

... (truncated)

Commits

• 501ce1c Release v4.1.0 (#6076)
• 6862162 [python-package] [docs] Update key format of eval_hist in docstring example (...
• 04b66e0 [docs] add vaex-ml to list of external repositories (#6085)
• e9fface [ci] [docs] fix broken ACM links (#6083)
• 1d7ee63 Remove superfluous todo from gitignore (#6081)
• ee51120 [python-package] simplify processing of pandas data (#6066)
• 8203306 Fix updates in random forest model using GOSS data sample strategy (#6017)
• 5ea0057 [ci] [R-package] test against R 4.3 on Linux and macOS (#6075)
• bca716c [R-package] Fix misdetected objective when passing lgb.Dataset instance to ...
• 7e34d23 Treat position bias via GAM in LambdaMART (#5929)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)