This is a feature release, which includes new features and removes previously deprecated features. The 3.1.x branch is now the supported bugfix branch, the 3.0.x branch has become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as pip-tools to pin all dependencies and control upgrades. We also encourage upgrading to MarkupSafe 2.1.1, the latest version at this time.
Follow our blog, Twitter, or GitHub to see future announcements.
This represents a significant amount of work, and there are quite a few changes. Be sure to carefully read the changelog, and use tools such as pip-compile and Dependabot to pin your dependencies and control your updates.
3.0.0rc2
Fixes an issue with the deprecated Markup subclass, #1401.
Fix compiler error when checking if required blocks in parent templates are
empty. :pr:1858
xmlattr filter does not allow keys with spaces. GHSA-h5c8-rqwp-cp95
Make error messages stemming from invalid nesting of {% trans %} blocks
more helpful. :pr:1918
Version 3.1.2
Released 2022-04-28
Add parameters to Environment.overlay to match __init__.
:issue:1645
Handle race condition in FileSystemBytecodeCache. :issue:1654
Version 3.1.1
Released 2022-03-25
The template filename on Windows uses the primary path separator.
:issue:1637
Version 3.1.0
Released 2022-03-24
Drop support for Python 3.6. :pr:1534
Remove previously deprecated code. :pr:1544
WithExtension and AutoEscapeExtension are built-in now.
contextfilter and contextfunction are replaced by
pass_context. evalcontextfilter and
evalcontextfunction are replaced by pass_eval_context.
environmentfilter and environmentfunction are replaced
by pass_environment.
Markup and escape should be imported from MarkupSafe.
Compiled templates from very old Jinja versions may need to be
recompiled.
Legacy resolve mode for Context subclasses is no longer
supported. Override resolve_or_missing instead of
A summary of changes in the Jupyter notebook. For more detailed
information, see GitHub.
Use pip install notebook --upgrade or conda upgrade notebook to
upgrade to the latest release.
We strongly recommend that you upgrade pip to version 9+ of pip before
upgrading notebook.
Use pip install pip --upgrade to upgrade pip. Check pip version with
pip --version.
v7.1
Jupyter Notebook 7.1 is based on JupyterLab 4.1, and includes a number of new features, bug fixes, and enhancements for extension developers. This release is compatible with extensions supporting JupyterLab 4.0. Extension authors are recommended to consult the Extension Migration Guide which lists deprecations and changes to the public API.
Below are a few highlights for this new release. Most of the new features and improvements come from the update to JupyterLab 4.1, although they are not all supported in Notebook 7.1.
Matching GitHub-Flavoured Markdown, JupyterLab 4.1 now supports Mermaid diagrams.
To create a mermaid diagram use the mermaid language specifier for a code block in a markdown cell or document, for example:
```mermaid
flowchart LR
A[Hard] -->|Text| B(Round)
B --> C{Decision}
C -->|One| D[Result 1]
C -->|Two| E[Result 2]
</code></pre>
<p>which renders as:</p>
<!-- raw HTML omitted -->
<h3>Inline completer</h3>
<p>JupyterLab now supports completion presented as ghost text in the cell and file editors,
allowing generative AI models to provide multi-line completions. This can now also be leveraged in Jupyter Notebook.</p>
<p>The suggestions are provided by plugins implementing the <code>IInlineCompletionProvider</code> API;
by default a single provider which uses kernel history is available.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/jupyter/notebook/commit/aee45355b568650cf650f4e2d3d551570655f844"><code>aee4535</code></a> Release 6.4.12</li>
<li><a href="https://github.com/jupyter/notebook/commit/a161ffac6bfff2491fe5c4e9f6111256b8b57f08"><code>a161ffa</code></a> Merge pull request from GHSA-v7vq-3x77-87vg</li>
<li><a href="https://github.com/jupyter/notebook/commit/b79702ccdbc40a1fda5a87a3f73854e8267529e6"><code>b79702c</code></a> updated error messages to not mention hidden files</li>
<li><a href="https://github.com/jupyter/notebook/commit/cb3dc22f0f152c1dcbcdb1aa3514748758f432a8"><code>cb3dc22</code></a> Update notebook/services/contents/filemanager.py</li>
<li><a href="https://github.com/jupyter/notebook/commit/1c3d7a60cd16deddba5b1344f5c94f967ba682d8"><code>1c3d7a6</code></a> added hidden checks on handlers.py and accompanying tests</li>
<li><a href="https://github.com/jupyter/notebook/commit/f69eb96cff7149b38bca068f4b7faaa7baf55902"><code>f69eb96</code></a> added hidden checks on FileContentsManager and accompanying tests</li>
<li><a href="https://github.com/jupyter/notebook/commit/2a76184f46ed6a7afcdd01e9ba660010abb9c977"><code>2a76184</code></a> add checks for hidden file or path on file get</li>
<li><a href="https://github.com/jupyter/notebook/commit/920c5cc3745cebceed8e77380164d126d7f92ca9"><code>920c5cc</code></a> Merge pull request <a href="https://redirect.github.com/jupyter/notebook/issues/6421">#6421</a> from RRosio/update-version</li>
<li><a href="https://github.com/jupyter/notebook/commit/d4eb85d0f9e2845d0889ef8a19486b96c850cba9"><code>d4eb85d</code></a> updating version to show dev</li>
<li><a href="https://github.com/jupyter/notebook/commit/8109251477fd813c1b94c6b0c7fbb9e051512b44"><code>8109251</code></a> Publish 6.4.11</li>
<li>Additional commits viewable in <a href="https://github.com/jupyter/notebook/compare/6.0.1...6.4.12">compare view</a></li>
</ul>
</details>
<br />
Fix a regular expression DoS vulnerability in the py.path.svnwc SVN blame functionality (CVE-2020-29651)
Update vendored apipkg: 1.4 => 1.5
Update vendored iniconfig: 1.0.0 => 1.1.1
1.9.0 (2020-06-24)
Add type annotation stubs for the following modules:
py.error
py.iniconfig
py.path (not including SVN paths)
py.io
py.xml
There are no plans to type other modules at this time.
The type annotations are provided in external .pyi files, not inline in the
code, and may therefore contain small errors or omissions. If you use py
in conjunction with a type checker, and encounter any type errors you believe
should be accepted, please report it in an issue.
1.8.2 (2020-06-15)
On Windows, py.path.locals which differ only in case now have the same
Python hash value. Previously, such paths were considered equal but had
different hashes, which is not allowed and breaks the assumptions made by
dicts, sets and other users of hashes.
1.8.1 (2019-12-27)
Handle FileNotFoundError when trying to import pathlib in path.common
on Python 3.4 (#207).
py.path.local.samefile now works correctly in Python 3 on Windows when dealing with symlinks.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/abhabongse/relationalcalculus-alloy/network/alerts).
Bumps the pip group group with 8 updates:
3.1.03.3.07.8.08.10.02.10.33.1.34.6.04.11.25.6.06.5.16.0.16.4.121.8.01.11.06.0.36.4Updates
bleachfrom 3.1.0 to 3.3.0Changelog
Sourced from bleach's changelog.
... (truncated)
Commits
79b7a3cMerge pull request from GHSA-vv2x-vrpj-qqpq842fcb4Update for v3.3.0 release1334134sanitizer: escape HTML commentsc045a8bMerge pull request #581 from mozilla/nit-fixes491abb0fix typo s/vnedoring/vendoring/10b1c5dvendor: add html5lib-1.1.dist-info/REQUESTEDcd838c3Merge pull request #579 from mozilla/validate-convert-entity-code-points612b808Update for v3.2.3 release6879f6ahtml5lib_shim: validate unicode points for convert_entity90cb80bUpdate for v3.2.2 releaseUpdates
ipythonfrom 7.8.0 to 8.10.0Release notes
Sourced from ipython's releases.
Commits
15ea1edrelease 8.10.0560ad10DOC: Update what's new for 8.10 (#13939)7557adeDOC: Update what's new for 8.10385d693Merge pull request from GHSA-29gw-9793-fvw7e548ee2Swallow potential exceptions from showtraceback() (#13934)0694b08MAINT: mock slowest test. (#13885)8655912MAINT: mock slowest test.a011765Isolate the attack tests with setUp and tearDown methodsc7a9470Add some regression tests for this changefd34cf5Swallow potential exceptions from showtraceback()Updates
jinja2from 2.10.3 to 3.1.3Release notes
Sourced from jinja2's releases.
... (truncated)
Changelog
Sourced from jinja2's changelog.
... (truncated)
Commits
d9de4bbrelease version 3.1.350124e1skip test pypi9ea7222use trusted publishingda703f7use trusted publishingbce1746use trusted publishing7277d80update pre-commit hooks5c8a105Make nested-trans-block exceptions nicer (#1918)19a55dbMake nested-trans-block exceptions nicer7167953Merge pull request from GHSA-h5c8-rqwp-cp957dd3680xmlattr filter disallows keys with spacesUpdates
jupyter-corefrom 4.6.0 to 4.11.2Release notes
Sourced from jupyter-core's releases.
Changelog
Sourced from jupyter-core's changelog.
... (truncated)
Commits
a8eac8cRelease 4.11.21118c8cMerge pull request from GHSA-m678-f26j-3hrpd3f61f3Release 4.11.1e7eeb9eFix inclusion of jupyter file and check in CI (#276)035bf11Release 4.11.045aa28b[pre-commit.ci] pre-commit autoupdate (#273)73401cc[pre-commit.ci] pre-commit autoupdate (#272)bc6b771is_hidden: Use normalized paths (#271)be38e52[pre-commit.ci] pre-commit autoupdate (#270)7b790d8[pre-commit.ci] pre-commit autoupdate (#269)Updates
nbconvertfrom 5.6.0 to 6.5.1Release notes
Sourced from nbconvert's releases.
... (truncated)
Changelog
Sourced from nbconvert's changelog.
... (truncated)
Commits
7471b75Release 6.5.1c1943e0Fix pre-commit8685e93Fix tests0abf290Run black and prettier418d545Run test on 6.x branchbef65d7Convert input to string prior to escape HTML0818628Check input type before escapingb206470GHSL-2021-1017, GHSL-2021-1020, GHSL-2021-1021a03cbb8GHSL-2021-1026, GHSL-2021-102548fe71eGHSL-2021-1024Updates
notebookfrom 6.0.1 to 6.4.12Release notes
Sourced from notebook's releases.
... (truncated)
Changelog
Sourced from notebook's changelog.