This is a feature release, which includes new features and removes previously deprecated features. The 3.1.x branch is now the supported bugfix branch, the 3.0.x branch has become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. We also encourage upgrading to MarkupSafe 2.1.1, the latest version at this time.
Follow our blog, Twitter, or GitHub to see future announcements.
This represents a significant amount of work, and there are quite a few changes. Be sure to carefully read the changelog, and use tools such as pip-compile and Dependabot to pin your dependencies and control your updates.
3.0.0rc2
Fixes an issue with the deprecated Markup subclass, #1401.
Fix compiler error when checking if required blocks in parent templates are
empty. :pr:1858
xmlattr filter does not allow keys with spaces. GHSA-h5c8-rqwp-cp95
Make error messages stemming from invalid nesting of {% trans %} blocks
more helpful. :pr:1918
Version 3.1.2
Released 2022-04-28
Add parameters to Environment.overlay to match __init__.
:issue:1645
Handle race condition in FileSystemBytecodeCache. :issue:1654
Version 3.1.1
Released 2022-03-25
The template filename on Windows uses the primary path separator.
:issue:1637
Version 3.1.0
Released 2022-03-24
Drop support for Python 3.6. :pr:1534
Remove previously deprecated code. :pr:1544
WithExtension and AutoEscapeExtension are built-in now.
contextfilter and contextfunction are replaced by
pass_context. evalcontextfilter and
evalcontextfunction are replaced by pass_eval_context.
environmentfilter and environmentfunction are replaced
by pass_environment.
Markup and escape should be imported from MarkupSafe.
Compiled templates from very old Jinja versions may need to be
recompiled.
Legacy resolve mode for Context subclasses is no longer
supported. Override resolve_or_missing instead of
A summary of changes in the Jupyter notebook. For more detailed
information, see GitHub.
Use pip install notebook --upgrade or conda upgrade notebook to
upgrade to the latest release.
We strongly recommend that you upgrade pip to version 9+ of pip before
upgrading notebook.
Use pip install pip --upgrade to upgrade pip. Check pip version with
pip --version.
v7.1
Jupyter Notebook 7.1 is based on JupyterLab 4.1, and includes a number of new features, bug fixes, and enhancements for extension developers. This release is compatible with extensions supporting JupyterLab 4.0. Extension authors are recommended to consult the Extension Migration Guide which lists deprecations and changes to the public API.
Below are a few highlights for this new release. Most of the new features and improvements come from the update to JupyterLab 4.1, although they are not all supported in Notebook 7.1.
Matching GitHub-Flavoured Markdown, JupyterLab 4.1 now supports Mermaid diagrams.
To create a mermaid diagram use the mermaid language specifier for a code block in a markdown cell or document, for example:
```mermaid
flowchart LR
A[Hard] -->|Text| B(Round)
B --> C{Decision}
C -->|One| D[Result 1]
C -->|Two| E[Result 2]
</code></pre>
<p>which renders as:</p>
<!-- raw HTML omitted -->
<h3>Inline completer</h3>
<p>JupyterLab now supports completion presented as ghost text in the cell and file editors,
allowing generative AI models to provide multi-line completions. This can now also be leveraged in Jupyter Notebook.</p>
<p>The suggestions are provided by plugins implementing the <code>IInlineCompletionProvider</code> API;
by default a single provider which uses kernel history is available.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/jupyter/notebook/commit/aee45355b568650cf650f4e2d3d551570655f844"><code>aee4535</code></a> Release 6.4.12</li>
<li><a href="https://github.com/jupyter/notebook/commit/a161ffac6bfff2491fe5c4e9f6111256b8b57f08"><code>a161ffa</code></a> Merge pull request from GHSA-v7vq-3x77-87vg</li>
<li><a href="https://github.com/jupyter/notebook/commit/b79702ccdbc40a1fda5a87a3f73854e8267529e6"><code>b79702c</code></a> updated error messages to not mention hidden files</li>
<li><a href="https://github.com/jupyter/notebook/commit/cb3dc22f0f152c1dcbcdb1aa3514748758f432a8"><code>cb3dc22</code></a> Update notebook/services/contents/filemanager.py</li>
<li><a href="https://github.com/jupyter/notebook/commit/1c3d7a60cd16deddba5b1344f5c94f967ba682d8"><code>1c3d7a6</code></a> added hidden checks on handlers.py and accompanying tests</li>
<li><a href="https://github.com/jupyter/notebook/commit/f69eb96cff7149b38bca068f4b7faaa7baf55902"><code>f69eb96</code></a> added hidden checks on FileContentsManager and accompanying tests</li>
<li><a href="https://github.com/jupyter/notebook/commit/2a76184f46ed6a7afcdd01e9ba660010abb9c977"><code>2a76184</code></a> add checks for hidden file or path on file get</li>
<li><a href="https://github.com/jupyter/notebook/commit/920c5cc3745cebceed8e77380164d126d7f92ca9"><code>920c5cc</code></a> Merge pull request <a href="https://redirect.github.com/jupyter/notebook/issues/6421">#6421</a> from RRosio/update-version</li>
<li><a href="https://github.com/jupyter/notebook/commit/d4eb85d0f9e2845d0889ef8a19486b96c850cba9"><code>d4eb85d</code></a> updating version to show dev</li>
<li><a href="https://github.com/jupyter/notebook/commit/8109251477fd813c1b94c6b0c7fbb9e051512b44"><code>8109251</code></a> Publish 6.4.11</li>
<li>Additional commits viewable in <a href="https://github.com/jupyter/notebook/compare/6.0.1...6.4.12">compare view</a></li>
</ul>
</details>
<br />
Fix a regular expression DoS vulnerability in the py.path.svnwc SVN blame functionality (CVE-2020-29651)
Update vendored apipkg: 1.4 => 1.5
Update vendored iniconfig: 1.0.0 => 1.1.1
1.9.0 (2020-06-24)
Add type annotation stubs for the following modules:
py.error
py.iniconfig
py.path (not including SVN paths)
py.io
py.xml
There are no plans to type other modules at this time.
The type annotations are provided in external .pyi files, not inline in the
code, and may therefore contain small errors or omissions. If you use py
in conjunction with a type checker, and encounter any type errors you believe
should be accepted, please report it in an issue.
1.8.2 (2020-06-15)
On Windows, py.path.locals which differ only in case now have the same
Python hash value. Previously, such paths were considered equal but had
different hashes, which is not allowed and breaks the assumptions made by
dicts, sets and other users of hashes.
1.8.1 (2019-12-27)
Handle FileNotFoundError when trying to import pathlib in path.common
on Python 3.4 (#207).
py.path.local.samefile now works correctly in Python 3 on Windows when dealing with symlinks.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/abhabongse/relationalcalculus-alloy/network/alerts).
Bumps the pip group group with 8 updates:
3.1.0
3.3.0
7.8.0
8.10.0
2.10.3
3.1.3
4.6.0
4.11.2
5.6.0
6.5.1
6.0.1
6.4.12
1.8.0
1.11.0
6.0.3
6.4
Updates
bleach
from 3.1.0 to 3.3.0Changelog
Sourced from bleach's changelog.
... (truncated)
Commits
79b7a3c
Merge pull request from GHSA-vv2x-vrpj-qqpq842fcb4
Update for v3.3.0 release1334134
sanitizer: escape HTML commentsc045a8b
Merge pull request #581 from mozilla/nit-fixes491abb0
fix typo s/vnedoring/vendoring/10b1c5d
vendor: add html5lib-1.1.dist-info/REQUESTEDcd838c3
Merge pull request #579 from mozilla/validate-convert-entity-code-points612b808
Update for v3.2.3 release6879f6a
html5lib_shim: validate unicode points for convert_entity90cb80b
Update for v3.2.2 releaseUpdates
ipython
from 7.8.0 to 8.10.0Release notes
Sourced from ipython's releases.
Commits
15ea1ed
release 8.10.0560ad10
DOC: Update what's new for 8.10 (#13939)7557ade
DOC: Update what's new for 8.10385d693
Merge pull request from GHSA-29gw-9793-fvw7e548ee2
Swallow potential exceptions from showtraceback() (#13934)0694b08
MAINT: mock slowest test. (#13885)8655912
MAINT: mock slowest test.a011765
Isolate the attack tests with setUp and tearDown methodsc7a9470
Add some regression tests for this changefd34cf5
Swallow potential exceptions from showtraceback()Updates
jinja2
from 2.10.3 to 3.1.3Release notes
Sourced from jinja2's releases.
... (truncated)
Changelog
Sourced from jinja2's changelog.
... (truncated)
Commits
d9de4bb
release version 3.1.350124e1
skip test pypi9ea7222
use trusted publishingda703f7
use trusted publishingbce1746
use trusted publishing7277d80
update pre-commit hooks5c8a105
Make nested-trans-block exceptions nicer (#1918)19a55db
Make nested-trans-block exceptions nicer7167953
Merge pull request from GHSA-h5c8-rqwp-cp957dd3680
xmlattr filter disallows keys with spacesUpdates
jupyter-core
from 4.6.0 to 4.11.2Release notes
Sourced from jupyter-core's releases.
Changelog
Sourced from jupyter-core's changelog.
... (truncated)
Commits
a8eac8c
Release 4.11.21118c8c
Merge pull request from GHSA-m678-f26j-3hrpd3f61f3
Release 4.11.1e7eeb9e
Fix inclusion of jupyter file and check in CI (#276)035bf11
Release 4.11.045aa28b
[pre-commit.ci] pre-commit autoupdate (#273)73401cc
[pre-commit.ci] pre-commit autoupdate (#272)bc6b771
is_hidden: Use normalized paths (#271)be38e52
[pre-commit.ci] pre-commit autoupdate (#270)7b790d8
[pre-commit.ci] pre-commit autoupdate (#269)Updates
nbconvert
from 5.6.0 to 6.5.1Release notes
Sourced from nbconvert's releases.
... (truncated)
Changelog
Sourced from nbconvert's changelog.
... (truncated)
Commits
7471b75
Release 6.5.1c1943e0
Fix pre-commit8685e93
Fix tests0abf290
Run black and prettier418d545
Run test on 6.x branchbef65d7
Convert input to string prior to escape HTML0818628
Check input type before escapingb206470
GHSL-2021-1017, GHSL-2021-1020, GHSL-2021-1021a03cbb8
GHSL-2021-1026, GHSL-2021-102548fe71e
GHSL-2021-1024Updates
notebook
from 6.0.1 to 6.4.12Release notes
Sourced from notebook's releases.
... (truncated)
Changelog
Sourced from notebook's changelog.