Bump the pip group across 1 directory with 5 updates #1193
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Updates the requirements on [ipython](https://github.com/ipython/ipython), [jupyter-core](https://github.com/jupyter/jupyter_core), [nbconvert](https://github.com/jupyter/nbconvert), [notebook](https://github.com/jupyter/notebook) and [tornado](https://github.com/tornadoweb/tornado) to permit the latest version. Updates `ipython` from 7.7.0 to 8.10.0 - [Release notes](https://github.com/ipython/ipython/releases) - [Commits](ipython/ipython@7.7.0...8.10.0) Updates `jupyter-core` from 4.5.0 to 4.11.2 - [Release notes](https://github.com/jupyter/jupyter_core/releases) - [Changelog](https://github.com/jupyter/jupyter_core/blob/main/CHANGELOG.md) - [Commits](jupyter/jupyter_core@4.5.0...4.11.2) Updates `nbconvert` from 5.6.0 to 6.5.1 - [Release notes](https://github.com/jupyter/nbconvert/releases) - [Changelog](https://github.com/jupyter/nbconvert/blob/main/CHANGELOG.md) - [Commits](jupyter/nbconvert@5.6.0...6.5.1) Updates `notebook` from 5.7.8 to 6.4.12 - [Release notes](https://github.com/jupyter/notebook/releases) - [Changelog](https://github.com/jupyter/notebook/blob/main/CHANGELOG.md) - [Commits](jupyter/notebook@5.7.8...6.4.12) Updates `tornado` to 6.4.1 - [Changelog](https://github.com/tornadoweb/tornado/blob/master/docs/releases.rst) - [Commits](tornadoweb/tornado@v1.0.0...v6.4.1) --- updated-dependencies: - dependency-name: ipython dependency-type: direct:production dependency-group: pip - dependency-name: jupyter-core dependency-type: direct:production dependency-group: pip - dependency-name: nbconvert dependency-type: direct:production dependency-group: pip - dependency-name: notebook dependency-type: direct:production dependency-group: pip - dependency-name: tornado dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Updates the requirements on ipython, jupyter-core, nbconvert, notebook and tornado to permit the latest version.
Updates
ipythonfrom 7.7.0 to 8.10.0Release notes
Sourced from ipython's releases.
Commits
15ea1edrelease 8.10.0560ad10DOC: Update what's new for 8.10 (#13939)7557adeDOC: Update what's new for 8.10385d693Merge pull request from GHSA-29gw-9793-fvw7e548ee2Swallow potential exceptions from showtraceback() (#13934)0694b08MAINT: mock slowest test. (#13885)8655912MAINT: mock slowest test.a011765Isolate the attack tests with setUp and tearDown methodsc7a9470Add some regression tests for this changefd34cf5Swallow potential exceptions from showtraceback()Updates
jupyter-corefrom 4.5.0 to 4.11.2Release notes
Sourced from jupyter-core's releases.
Changelog
Sourced from jupyter-core's changelog.
... (truncated)
Commits
a8eac8cRelease 4.11.21118c8cMerge pull request from GHSA-m678-f26j-3hrpd3f61f3Release 4.11.1e7eeb9eFix inclusion of jupyter file and check in CI (#276)035bf11Release 4.11.045aa28b[pre-commit.ci] pre-commit autoupdate (#273)73401cc[pre-commit.ci] pre-commit autoupdate (#272)bc6b771is_hidden: Use normalized paths (#271)be38e52[pre-commit.ci] pre-commit autoupdate (#270)7b790d8[pre-commit.ci] pre-commit autoupdate (#269)Updates
nbconvertfrom 5.6.0 to 6.5.1Release notes
Sourced from nbconvert's releases.
... (truncated)
Changelog
Sourced from nbconvert's changelog.
... (truncated)
Commits
7471b75Release 6.5.1c1943e0Fix pre-commit8685e93Fix tests0abf290Run black and prettier418d545Run test on 6.x branchbef65d7Convert input to string prior to escape HTML0818628Check input type before escapingb206470GHSL-2021-1017, GHSL-2021-1020, GHSL-2021-1021a03cbb8GHSL-2021-1026, GHSL-2021-102548fe71eGHSL-2021-1024Updates
notebookfrom 5.7.8 to 6.4.12Release notes
Sourced from notebook's releases.
... (truncated)
Changelog
Sourced from notebook's changelog.
... (truncated)
Commits
aee4535Release 6.4.12a161ffaMerge pull request from GHSA-v7vq-3x77-87vgb79702cupdated error messages to not mention hidden filescb3dc22Update notebook/services/contents/filemanager.py1c3d7a6added hidden checks on handlers.py and accompanying testsf69eb96added hidden checks on FileContentsManager and accompanying tests2a76184add checks for hidden file or path on file get920c5ccMerge pull request #6421 from RRosio/update-versiond4eb85dupdating version to show dev8109251Publish 6.4.11Updates
tornadoto 6.4.1Changelog
Sourced from tornado's changelog.
... (truncated)
Commits
2a0e1d1Merge pull request #3388 from bdarnell/release-641b7af4e8Release notes and version bump for version 6.4.1d65f6e7Merge pull request #3387 from bdarnell/chunked-parsing8d721a8httputil: Only strip tabs and spaces from header values7786f09Merge pull request #3386 from bdarnell/curl-crlffb119c7http1connection: Stricter handling of transfer-encodingb0ffc58curl_httpclient,http1connection: Prohibit CR and LF in headers0efa9a4Merge pull request #3385 from bdarnell/update-black2757c6eMerge pull request #3384 from tornadoweb/dependabot/pip/requests-2.32.2291d1b6*: Update blackDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.