search

Arelle / ixbrl-viewer

The Arelle iXBRL Viewer allows Inline XBRL (or iXBRL) reports to be viewed interactively in a web browser. The viewer allows users to access the tagged XBRL data embedded in an iXBRL report.
Other
100 stars 60 forks source link

Bump the pip-dependencies group with 1 update #606

Closed dependabot[bot] closed 10 months ago

dependabot[bot] commented 10 months ago

Updates the requirements on lxml to permit the latest version. Updates lxml to 5.0.0

Changelog

Sourced from lxml's changelog.

5.0.0 (2023-12-29)

Features added

  • Character escaping in C14N2 serialisation now uses a single pass over the text instead of searching for each unescaped character separately.

  • Early support for Python 3.13a2 was added.

Bugs fixed

  • LP#1976304: The Element.addnext() method previously inserted the new element before existing tail text. The tail text of both sibling elements now stays on the respective elements.

  • LP#1980767, GH#379: TreeBuilder.close() could fail with a TypeError after parsing incorrect input. Original patch by Enrico Minack.

  • Element.itertext(with_tail=False) returned the tail text of comments and processing instructions, despite the explicit option.

  • GH#370: A crash with recent libxml2 2.11.x versions was resolved. Patch by Michael Schlenker.

  • A compile problem with recent libxml2 2.12.x versions was resolved.

  • The internal exception handling in C callbacks was improved for Cython 3.0.

  • The exception declarations of xmlInputReadCallback, xmlInputCloseCallback, xmlOutputWriteCallback and xmlOutputCloseCallback in tree.pxd were corrected to prevent running Python code or calling into the C-API with a live exception set.

  • GH#385: The long deprecated unittest.m̀akeSuite() function is no longer used. Patch by Miro Hrončok.

  • LP#1522052: A file-system specific test is now optional and should no longer fail on systems that don't support it.

  • GH#392: Some tests were adapted for libxml2 2.13. Patch by Nick Wellnhofer.

  • Contains all fixes from lxml 4.9.4.

Other changes

... (truncated)

Commits
  • 73fa115 Prepare release of lxml 5.0.0.
  • 6256584 Update changelog.
  • b38cebf Disable external entity resolution (XXE) by default (GH-391)
  • 2de6ecf tests: Set no_network=False in HTTP tests (GH-392)
  • 5024820 Minor code cleanup.
  • 9f58aa7 Do not let "Element.itertext()"" return tail text of PIs and comments if the ...
  • badcb49 Update changelog.
  • e82b1f5 CI: Build the coverage job with STATIC_DEPS=true to make it independent of th...
  • 8324137 Fix test in Py2.7.
  • ac82838 Fix the work around for a test failure in Python 3.11.
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
aviary-wf commented 10 months ago

Security Insights

No security relevant content was detected by automated scans.

Action Items