Scheduled weekly dependency update for week 43

[pyup-bot]

Update argh from 0.29.3 to 0.30.1.

Changelog

0.30.1

--------------

Bugs fixed:

- Regression: certain special values in argument default value would cause an
exception (204)

Enhancements:

- Improved the tutorial.
- Added a more informative error message when the reason is likely to be
related to the migration from Argh v0.29 to a version with a new argument
name mapping policy.

Other changes:

- Added `py.typed` marker file for :pep:`561`.

0.30.0

--------------

Backwards incompatible changes:

- A new policy for mapping function arguments to CLI arguments is used by
default (see :class:`argh.assembling.NameMappingPolicy`).

The following function does **not** map to ``func foo [--bar]`` anymore::

   def func(foo, bar=None):
       ...

Since this release it maps to ``func foo [bar]`` instead.
Please update the function this way to keep `bar` an "option"::

   def func(foo, *, bar=None):
       ...

If you cannot modify the function signature to use kwonly args for options,
please consider explicitly specifying the legacy name mapping policy::

   set_default_command(
       func, name_mapping_policy=NameMappingPolicy.BY_NAME_IF_HAS_DEFAULT
   )

- The name mapping policy `BY_NAME_IF_HAS_DEFAULT` slightly deviates from the
old behaviour. Kwonly arguments without default values used to be marked as
required options (``--foo FOO``), now they are treated as positionals
(``foo``). Please consider the new default policy (`BY_NAME_IF_KWONLY`) for
a better treatment of kwonly.

- Removed previously deprecated features (184 → 188):

- argument help string in annotations — reserved for type hints;
- `argh.SUPPORTS_ALIASES`;
- `argh.safe_input()`;
- previously renamed arguments for `add_commands()`: `namespace`,
 `namespace_kwargs`, `title`, `description`, `help`;
- `pre_call` argument in `dispatch()`.  The basic usage remains simple but
 more granular functions are now available for more control.

 Instead of this::

   argh.dispatch(..., pre_call=pre_call_hook)

 please use this::

   func, ns = argh.parse_and_resolve(...)
   pre_call_hook(ns)
   argh.run_endpoint_function(func, ns, ...)

Deprecated:

- The `expects_obj` decorator.  Rationale: it used to support the old,
"un-pythonic" style of usage, which essentially lies outside the scope of
Argh.  If you are not using the mapping of function arguments onto CLI, then
you aren't reducing the amount of code compared to vanilla Argparse.

- The `add_help_command` argument in `dispatch()`.
Rationale: it doesn't add much to user experience; it's not much harder to
type ``--help`` than it is to type ``help``; moreover, the option can be
added anywhere, unlike its positional counterpart.

Enhancements:

- Added support for Python 3.12.
- Added type annotations to existing Argh code (185 → 189).
- The `dispatch()` function has been refactored, so in case you need finer
control over the process, two new, more granular functions can be used:

- `endpoint_function, namespace = argh.parse_and_resolve(...)`
- `argh.run_endpoint_function(endpoint_function, namespace, ...)`

Please note that the names may change in the upcoming versions.

- Configurable name mapping policy has been introduced for function argument
to CLI argument translation (191 → 199):

- `BY_NAME_IF_KWONLY` (default and recommended).
- `BY_NAME_IF_HAS_DEFAULT` (close to pre-v.0.30 behaviour);

Please check API docs on :class:`argh.assembling.NameMappingPolicy` for
details.

0.29.4

--------------

Bugs fixed:

- Test coverage reported as <100% when argcomplete is installed (187)

Links

• PyPI: https://pypi.org/project/argh
• Changelog: https://data.safetycli.com/changelogs/argh/
• Docs: https://pythonhosted.org/argh/

Update arrow from 1.2.3 to 1.3.0.

Changelog

1.3.0

------------------

- [ADDED] Added official support for Python 3.11 and 3.12.
- [ADDED] Added dependency on ``types-python-dateutil`` to improve Arrow mypy compatibility. `PR 1102 <https://github.com/arrow-py/arrow/pull/1102>`_
- [FIX] Updates to Italian, Romansh, Hungarian, Finish and Arabic locales.
- [FIX] Handling parsing of UTC prefix in timezone strings.
- [CHANGED] Update documentation to improve readability.
- [CHANGED] Dropped support for Python 3.6 and 3.7, which are end-of-life.
- [INTERNAL] Migrate from ``setup.py``/Twine to ``pyproject.toml``/Flit for packaging and distribution.
- [INTERNAL] Adopt ``.readthedocs.yaml`` configuration file for continued ReadTheDocs support.

Links

• PyPI: https://pypi.org/project/arrow
• Changelog: https://data.safetycli.com/changelogs/arrow/

Update astroid from 2.15.6 to 3.0.1.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/astroid

Update astropy from 5.3.3 to 5.3.4.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/astropy
• Changelog: https://data.safetycli.com/changelogs/astropy/
• Homepage: http://astropy.org

Update Babel from 2.12.1 to 2.13.0.

Changelog

2.13.0

--------------

Upcoming deprecation
~~~~~~~~~~~~~~~~~~~~

* This version, Babel 2.13, is the last version of Babel to support Python 3.7.
Babel 2.14 will require Python 3.8 or newer.

Features
~~~~~~~~

* Add flag to ignore POT-Creation-Date for updates by joeportela in :gh:`999`
* Support 't' specifier in keywords by jeanas in :gh:`1015`
* Add f-string parsing for Python 3.12 (PEP 701) by encukou in :gh:`1027`

Fixes
~~~~~

* Various typing-related fixes by akx in :gh:`979`, in :gh:`978`, :gh:`981`,  :gh:`983`
* babel.messages.catalog: deduplicate _to_fuzzy_match_key logic by akx in :gh:`980`
* Freeze format_time() tests to a specific date to fix test failures by mgorny in :gh:`998`
* Spelling and grammar fixes by scop in :gh:`1008`
* Renovate lint tools by akx in :gh:`1017`, :gh:`1028`
* Use SPDX license identifier by vargenau in :gh:`994`
* Use aware UTC datetimes internally by scop in :gh:`1009`

New Contributors
~~~~~~~~~~~~~~~~

* mgorny made their first contribution in :gh:`998`
* vargenau made their first contribution in :gh:`994`
* joeportela made their first contribution in :gh:`999`
* encukou made their first contribution in :gh:`1027`

Links

• PyPI: https://pypi.org/project/babel
• Changelog: https://data.safetycli.com/changelogs/babel/
• Homepage: https://babel.pocoo.org/
• Docs: https://pythonhosted.org/Babel/

Update bitarray from 2.8.1 to 2.8.2.

Changelog

2.8.2

-------------------
* update cibuildwheel to 2.16.1 in order to provide cp312 wheels on PyPI
* improve error messages for masked assignment
* simplify test collection
* added `pytest.ini` to allow running pytest with no additional arguments,
 see 208
* `util.sc_encode()`: avoid writing empty blocks at end of compressed
 stream, ie. skip encoding when total population count is reached

Links

• PyPI: https://pypi.org/project/bitarray
• Changelog: https://data.safetycli.com/changelogs/bitarray/
• Repo: https://github.com/ilanschnell/bitarray

Update black from 23.9.1 to 23.10.1.

Changelog

23.10.1

Highlights

- Maintanence release to get a fix out for GitHub Action edge case (3957)

Preview style

- Fix merging implicit multiline strings that have inline comments (3956)
- Allow empty first line after block open before a comment or compound statement (3967)

Packaging

- Change Dockerfile to hatch + compile black (3965)

Integrations

- The summary output for GitHub workflows is now suppressible using the `summary`
parameter. (3958)
- Fix the action failing when Black check doesn't pass (3957)

Documentation

- It is known Windows documentation CI is broken
https://github.com/psf/black/issues/3968

23.10.0

Stable style

- Fix comments getting removed from inside parenthesized strings (3909)

Preview style

- Fix long lines with power operators getting split before the line length (3942)
- Long type hints are now wrapped in parentheses and properly indented when split across
multiple lines (3899)
- Magic trailing commas are now respected in return types. (3916)
- Require one empty line after module-level docstrings. (3932)
- Treat raw triple-quoted strings as docstrings (3947)

Configuration

- Fix cache versioning logic when `BLACK_CACHE_DIR` is set (3937)

Parser

- Fix bug where attributes named `type` were not accepted inside `match` statements
(3950)
- Add support for PEP 695 type aliases containing lambdas and other unusual expressions
(3949)

Output

- Black no longer attempts to provide special errors for attempting to format Python 2
code (3933)
- Black will more consistently print stacktraces on internal errors in verbose mode
(3938)

Integrations

- The action output displayed in the job summary is now wrapped in Markdown (3914)

Links

• PyPI: https://pypi.org/project/black
• Changelog: https://data.safetycli.com/changelogs/black/

Update bleach from 6.0.0 to 6.1.0.

Changelog

6.1.0

---------------------------------

**Backwards incompatible changes**

* Dropped support for Python 3.7. (709)

**Security fixes**

None

**Bug fixes**

* Add support for Python 3.12. (710)
* Fix linkify with arrays in querystring (436)
* Handle more cases with < followed by character data (705)
* Fix entities inside a tags in linkification (704)
* Update cap for tinycss2 to <1.3 (702)
* Updated Sphinx requirement
* Add dependabot for github actions and update github actions

Links

• PyPI: https://pypi.org/project/bleach
• Changelog: https://data.safetycli.com/changelogs/bleach/
• Repo: https://github.com/mozilla/bleach
• Docs: https://pythonhosted.org/bleach/

Update bokeh from 3.2.2 to 3.3.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/bokeh

Update cffi from 1.15.1 to 1.16.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/cffi
• Docs: http://cffi.readthedocs.org

Update charset-normalizer from 3.2.0 to 3.3.1.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/charset-normalizer
• Repo: https://github.com/Ousret/charset_normalizer

Update cloudpickle from 2.2.1 to 3.0.0.

Changelog

3.0.0

=====

- Officially support Python 3.12 and drop support for Python 3.6 and 3.7.
Dropping support for older Python versions made it possible to simplify the
code base signficantly, hopefully making it easier to contribute to and
maintain the project.
([PR 515](https://github.com/cloudpipe/cloudpickle/pull/515))

- Fix pickling of dataclasses and their instances.
([issue 386](https://github.com/cloudpipe/cloudpickle/issues/386),
[PR 513](https://github.com/cloudpipe/cloudpickle/pull/513))

- Any color you like as long as it's black.
([PR 521](https://github.com/cloudpipe/cloudpickle/pull/521))

- Drop `setup.py` and `setuptools` in favor of `pyproject.toml` and `flit`.
([PR 521](https://github.com/cloudpipe/cloudpickle/pull/521))

Links

• PyPI: https://pypi.org/project/cloudpickle
• Changelog: https://data.safetycli.com/changelogs/cloudpickle/
• Repo: https://github.com/cloudpipe/cloudpickle

Update construct from 2.10.68 to 2.10.69.

Changelog

2.10.69

Took a long time to get here... apologies...

Links

• PyPI: https://pypi.org/project/construct
• Changelog: https://data.safetycli.com/changelogs/construct/
• Docs: http://construct.readthedocs.org

Update cookiecutter from 2.3.0 to 2.4.0.

Changelog

2.4.0

Minor Changes

* Gracefully handle files with mixed lined endings (1942) EricHripko
* Implement a pre_prompt hook that will run before prompts (1950) ericof

Documentation updates

* Implement a pre_prompt hook that will run before prompts (1950) ericof
* update main docstrings to include overwrite_if_exists and skip_if_file_exists (1947) david-abn

This release is made by wonderful contributors:

EricHripko, david-abn and ericof

2.3.1

Minor Changes

* add checkout details to the context (fixes 1759) (1923) JonZeolla

CI/CD and QA changes

* Update the black pre-commit hook URL and version (1934) kurtmckee
* Use UTF-8 for file reading/writing (1937) rmartin16

Documentation updates

* Add missing "parent dir" symbol in tutorial 2 (1932) tvoirand
* Remove colons from exemplary prompt messages (1912) paduszyk
* docs: add install instruction for Void Linux (1917) tranzystorek-io

Bugfixes

* Fix nested templates in Git repository (1922) BTatlock
* Fix prompt counter. (1940) ericof
* Fix variables with null default not being required (1919) (1920) limtis0

This release is made by wonderful contributors:

BTatlock, JonZeolla, ericof, kurtmckee, limtis0, paduszyk, rmartin16, tranzystorek-io and tvoirand

Links

• PyPI: https://pypi.org/project/cookiecutter
• Changelog: https://data.safetycli.com/changelogs/cookiecutter/
• Repo: https://github.com/cookiecutter/cookiecutter

Update cryptography from 41.0.3 to 41.0.4.

Changelog

41.0.4

~~~~~~~~~~~~~~~~~~~

* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.1.3.

.. _v41-0-3:

Links

• PyPI: https://pypi.org/project/cryptography
• Changelog: https://data.safetycli.com/changelogs/cryptography/

Update cycler from 0.11.0 to 0.12.1.

Changelog

0.12.1

This is the second release of Cycler 0.12.

This fixes the previous release not shipping the `py.typed` file.

0.12.0

This is the first release of Cycler 0.12.

The major new feature in this release is the addition of type hints.
Furthermore, the minimum supported version of Python is now 3.8.

0.12.0rc1

This is the first release candidate for Cycler 0.12.0.

The major new feature in this release is the addition of type hints.
Furthermore, the minimum supported version of Python is now 3.8.

Links

• PyPI: https://pypi.org/project/cycler
• Changelog: https://data.safetycli.com/changelogs/cycler/

Update Cython from 3.0.2 to 3.0.4.

Changelog

3.0.4

==================

Features added
--------------

* A new compiler directive ``show_performance_hints`` was added to disable the
newly added performance hint output.
(Github issue :issue:`5748`)

Bugs fixed
----------

* cythonize` required ``distutils`` even for operations that did not build binaries.
(Github issue :issue:`5751`)

* A regression in 3.0.3 was fixed that prevented calling inline functions
from another inline function in ``.pxd`` files.
(Github issue :issue:`5748`)

* Some C compiler warnings were resolved.
Patch by Pierre Jolivet.  (Github issue :issue:`5756`)

3.0.3

==================

Features added
--------------

* More warnings were added to help users migrate and avoid bugs.
(Github issue :issue:`5650`)

* A warning-like category for performance hints was added that bypasses ``-Werror``.
(Github issue :issue:`5673`)

* FastGIL now uses standard ``thread_local`` in C++.
(Github issue :issue:`5640`)

* ``reference_wrapper`` was added to ``libcpp.functional``.
Patch by Vyas Ramasubramani.  (Github issue :issue:`5671`)

* The ``cythonize`` command now supports the ``--cplus`` option known from the ``cython`` command.
(Github issue :issue:`5736`)

Bugs fixed
----------

* Performance regressions where the GIL was needlessly acquired were fixed.
(Github issues :issue:`5670`, :issue:`5700`)

* A reference leak for exceptions in Python 3.12 was resolved.
Patch by Eric Johnson.  (Github issue :issue:`5724`)

* ``fastcall`` calls with keyword arguments generated incorrect C code.
(Github issue :issue:`5665`)

* Assigning the type converted result of a conditional (if-else) expression
to ``int`` or ``bool`` variables could lead to incorrect C code.
(Github issue :issue:`5731`)

* Early (unlikely) failures in Python function wrappers no longer set a
traceback in order to simplify the C code flow.  Being mostly memory
allocation errors, they probably would never have created a traceback anyway.
(Github issue :issue:`5681`)

* Relative cimports from packages with ``__init__.py`` files could fail.
(Github issue :issue:`5715`)

* Several issues with the Limited API support were resolved.
(Github issues :issue:`5641`, :issue:`5648`, :issue:`5689`)

* The code generated for special-casing both Cython functions and PyCFunctions was cleaned up
to avoid calling C-API functions that were not meant for the other type respectively.
This could previously trigger assertions in CPython debug builds and now also plays better
with the Limited API.
(Github issues :issue:`4804`, :issue:`5739`)

* Fix some C compiler warnings.
Patches by Ralf Gommers, Oleksandr Pavlyk, Sebastian Koslowski et al.
(Github issues :issue:`5651`, :issue:`5663`, :issue:`5668`, :issue:`5717`, :issue:`5726`, :issue:`5734`)

* Generating gdb debugging information failed when using generator expressions.
Patch by Oleksandr Pavlyk.  (Github issue :issue:`5552`)

* Passing a ``setuptools.Extension`` into ``cythonize()`` instead of a
``distutils.Extension`` could make it miss the matching extensions.

* ``cython -M`` needlessly required ``distutils``, which made it fail in Python 3.12.
(Github issue :issue:`5681`)

Other changes
-------------

* The visible deprecation warning for ``DEF`` was removed again since it proved
difficult for some users to migrate away from it.  The statement is still
meant to be removed at some point (and thus, like ``IF``, should not be
used in new code), but the time for sunset is probably not around the corner.
(Github issue :issue:`4310`)

* The ``np_pythran`` option raise a ``DeprecationWarning`` if it receives other values
than ``True`` and ``False``.  This will eventually be disallowed (in line with all
other boolean options).

Links

• PyPI: https://pypi.org/project/cython
• Changelog: https://data.safetycli.com/changelogs/cython/
• Homepage: https://cython.org/

Update dask from 2023.9.1 to 2023.10.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/dask

Update debugpy from 1.7.0 to 1.8.0.

Changelog

1.8.0

Fixes 1379.

Drops Python 3.7 support. Please use [debugpy v1.7.0](https://github.com/microsoft/debugpy/releases/tag/v1.7.0) if you need to debug Python 3.7.

Links

• PyPI: https://pypi.org/project/debugpy
• Changelog: https://data.safetycli.com/changelogs/debugpy/
• Homepage: https://aka.ms/debugpy

Update distributed from 2023.9.1 to 2023.10.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/distributed

Update Django from 4.2.5 to 4.2.6.

Changelog

4.2.6

==========================

*October 4, 2023*

Django 4.2.6 fixes a security issue with severity "moderate" and several bugs
in 4.2.5.

CVE-2023-43665: Denial-of-service possibility in ``django.utils.text.Truncator``
================================================================================

Following the fix for :cve:`2019-14232`, the regular expressions used in the
implementation of ``django.utils.text.Truncator``'s ``chars()`` and ``words()``
methods (with ``html=True``) were revised and improved. However, these regular
expressions still exhibited linear backtracking complexity, so when given a
very long, potentially malformed HTML input, the evaluation would still be
slow, leading to a potential denial of service vulnerability.

The ``chars()`` and ``words()`` methods are used to implement the
:tfilter:`truncatechars_html` and :tfilter:`truncatewords_html` template
filters, which were thus also vulnerable.

The input processed by ``Truncator``, when operating in HTML mode, has been
limited to the first five million characters in order to avoid potential
performance and memory issues.

Bugfixes
========

* Fixed a regression in Django 4.2.5 where overriding the deprecated
``DEFAULT_FILE_STORAGE`` and ``STATICFILES_STORAGE`` settings in tests caused
the main ``STORAGES`` to mutate (:ticket:`34821`).

* Fixed a regression in Django 4.2 that caused unnecessary casting of string
based fields (``CharField``, ``EmailField``, ``TextField``, ``CICharField``,
``CIEmailField``, and ``CITextField``) used with the ``__isnull`` lookup on
PostgreSQL. As a consequence, indexes using an ``__isnull`` expression or
condition created before Django 4.2 wouldn't be used by the query planner,
leading to a performance regression (:ticket:`34840`).

You may need to recreate such indexes created in your database with Django
4.2 to 4.2.5, as they contain unnecessary ``::text`` casting. Find candidate
indexes with this query:

.. code-block:: sql

     SELECT indexname, indexdef
     FROM pg_indexes
     WHERE indexdef LIKE '%::text IS %NULL';


==========================

Links

• PyPI: https://pypi.org/project/django
• Changelog: https://data.safetycli.com/changelogs/django/
• Homepage: https://www.djangoproject.com/

Update django-allauth from 0.56.1 to 0.57.0.

Changelog

0.57.0

*******************

Note worthy changes
-------------------

- Added Django password validation help text to ``password1`` on
set/change/signup forms.

- Microsoft: the tenant parameter can now be configured per app.

- SAML: Added support for additional configuration parameters, such as contacts,
and support for certificate rotation.

- The enumeration prevention behavior at signup is now configurable. Whether or
not enumeration can be prevented during signup depends on the email
verification method. In case of mandatory verification, enumeration can be
properly prevented because the case where an email address is already taken is
indistinguishable from the case where it is not.  However, in case of optional
or disabled email verification, enumeration can only be prevented by allowing
the signup to go through, resulting in multiple accounts sharing same email
address (although only one of the accounts can ever have it verified). When
enumeration is set to ``True``, email address uniqueness takes precedence over
enumeration prevention, and the issue of multiple accounts having the same
email address will be avoided, thus leaking information. Set it to
``"strict"`` to allow for signups to go through.


Fixes
=====

- Fixed ``?next=`` URL handling in the SAML provider.

- During 2FA, pending logins were incorrectly removed when e.g. Django was asked
to serve a ``/favicon.ico`` URL.

Links

• PyPI: https://pypi.org/project/django-allauth
• Changelog: https://data.safetycli.com/changelogs/django-allauth/
• Homepage: https://www.intenct.nl/projects/django-allauth/

Update django-crispy-forms from 2.0 to 2.1.

Changelog

2.1

* Added support for Django 5.0.
* Dropped support for Django 3.2, 4.0 and 4.1.
* Added support for Python 3.12.
* Dropped support for Python 3.7.

See the [2.1 Milestone](https://github.com/django-crispy-forms/django-crispy-forms/milestone/20?closed=1) for the full change
list.

Links

• PyPI: https://pypi.org/project/django-crispy-forms
• Changelog: https://data.safetycli.com/changelogs/django-crispy-forms/

Update django-elasticsearch-dsl from 7.3 to 8.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/django-elasticsearch-dsl
• Changelog: https://data.safetycli.com/changelogs/django-elasticsearch-dsl/
• Repo: https://github.com/sabricot/django-elasticsearch-dsl

Update django-filter from 23.2 to 23.3.

Changelog

23.3

------------------------

* Adds initial compatibility with Django 5.0, prior to Django 5.0a1.

* Updates packaging to use pyproject.toml and Flit.

Links

• PyPI: https://pypi.org/project/django-filter
• Changelog: https://data.safetycli.com/changelogs/django-filter/

Update django-modelcluster from 6.0 to 6.1.

Changelog

6.1

~~~~~~~~~~~~~~~~
* Removed Django 2.2, 3.0, 3.1 & 4.0 support
* Added Django 4.2 support (Irtaza Akram)
* Fixed deprecation warning for removal of `django.utils.timezone.utc` (John-Scott Atlakson)
* Fix: Avoid unnecessary call to localtime for timestamps already in UTC (Stefan Hammer)
* Removed Python 3.7 support
* Add Python 3.11 and 3.12 support

Links

• PyPI: https://pypi.org/project/django-modelcluster
• Changelog: https://data.safetycli.com/changelogs/django-modelcluster/
• Repo: https://github.com/wagtail/django-modelcluster

Update django-mptt from 0.14.0 to 0.15.0.

Changelog

0.15

====

- **Since I unfortunately still depend on django-mptt in prehistoric projects I
took it upon me to make it runnable again. This doesn't mean I want to
maintain the package.**
- Added Django 4.2.
- Dropped Python < 3.9, Django < 3.2.
- Started using ruff and more rules.
- Dropped the ``index_together`` check on Django 5 and better. Django 5 only
supports ``Meta.indexes``.
- Optimized tree rebuilding.
- Added support for the Django admin theme switcher.
- Switched to hatchling.

Links

• PyPI: https://pypi.org/project/django-mptt
• Changelog: https://data.safetycli.com/changelogs/django-mptt/

Update django-notifications-hq from 1.8.2 to 1.8.3.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/django-notifications-hq
• Repo: http://github.com/django-notifications/django-notifications

Update django-phonenumber-field from 7.1.0 to 7.2.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/django-phonenumber-field
• Changelog: https://data.safetycli.com/changelogs/django-phonenumber-field/

Update drf-haystack from 1.8.12 to 1.8.13.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/drf-haystack
• Repo: https://github.com/rhblind/drf-haystack.git

Update elasticsearch from 8.9.0 to 8.10.1.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/elasticsearch
• Repo: https://github.com/elastic/elasticsearch-py

Update filelock from 3.12.3 to 3.12.4.

Changelog

3.12.4

<!-- Release notes generated using configuration in .github/release.yml at main -->

What's Changed
* change typing-extensions to be installed only with the [typing] extra by asottile in https://github.com/tox-dev/filelock/pull/276

New Contributors
* asottile made their first contribution in https://github.com/tox-dev/filelock/pull/276

**Full Changelog**: https://github.com/tox-dev/filelock/compare/3.12.3...3.12.4

Links

• PyPI: https://pypi.org/project/filelock
• Changelog: https://data.safetycli.com/changelogs/filelock/

Update Flask from 2.3.3 to 3.0.0.

Changelog

3.0.0

-------------

Released 2023-09-30

-   Remove previously deprecated code. :pr:`5223`
-   Deprecate the ``__version__`` attribute. Use feature detection, or
 ``importlib.metadata.version("flask")``, instead. :issue:`5230`
-   Restructure the code such that the Flask (app) and Blueprint
 classes have Sans-IO bases. :pr:`5127`
-   Allow self as an argument to url_for. :pr:`5264`
-   Require Werkzeug >= 3.0.0.

Links

• PyPI: https://pypi.org/project/flask
• Changelog: https://data.safetycli.com/changelogs/flask/

Update fonttools from 4.42.1 to 4.43.1.

Changelog

4.43.1

----------------------------

- [EBDT] Fixed TypeError exception in `_reverseBytes` method triggered when dumping
some bitmap fonts with `ttx -z bitwise` option (3162).
- [v/hhea] Fixed UnboundLocalError exception in ``recalc`` method when no vmtx or hmtx
tables are present (3290).
- [bezierTools] Fixed incorrectly typed cython local variable leading to TypeError when
calling ``calcQuadraticArcLength`` (3288).
- [feaLib/otlLib] Better error message when building Coverage table with missing glyph (3286).

4.43.0

----------------------------

- [subset] Set up lxml ``XMLParser(resolve_entities=False)`` when parsing OT-SVG documents
to prevent XML External Entity (XXE) attacks (9f61271dc):
https://codeql.github.com/codeql-query-help/python/py-xxe/
- [varLib.iup] Added workaround for a Cython bug in ``iup_delta_optimize`` that was
leading to IUP tolerance being incorrectly initialised, resulting in sub-optimal deltas
(60126435d, cython/cython5732).
- [varLib] Added new command-line entry point ``fonttools varLib.avar`` to add an
``avar`` table to an existing VF from axes mappings in a .designspace file (0a3360e52).
- [instancer] Fixed bug whereby no longer used variation regions were not correctly pruned
after VarData optimization (3268).
- Added support for Python 3.12 (3283).

Links

• PyPI: https://pypi.org/project/fonttools
• Changelog: https://data.safetycli.com/changelogs/fonttools/
• Repo: http://github.com/fonttools/fonttools

Update fsspec from 2023.9.0 to 2023.10.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/fsspec
• Repo: https://github.com/fsspec/filesystem_spec

Update gevent from 23.9.0.post1 to 23.9.1.

Changelog

23.9.1

===================


Bugfixes
--------

- Require greenlet 3.0 on Python 3.11 and Python 3.12; greenlet 3.0 is
recommended for all platforms. This fixes a number of obscure crashes
on all versions of Python, as well as fixing a fairly common problem
on Python 3.11+ that could manifest as either a crash or as a
``SystemError``.
See :issue:`1985`.


----

Links

• PyPI: https://pypi.org/project/gevent
• Changelog: https://data.safetycli.com/changelogs/gevent/
• Homepage: http://www.gevent.org/

Update google-api-core from 2.11.1 to 2.12.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/google-api-core
• Repo: https://github.com/googleapis/python-api-core

Update google-api-python-client from 2.98.0 to 2.104.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/google-api-python-client
• Changelog: https://data.safetycli.com/changelogs/google-api-python-client/
• Repo: https://github.com/googleapis/google-api-python-client/

Update google-auth from 2.23.0 to 2.23.3.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/google-auth
• Changelog: https://data.safetycli.com/changelogs/google-auth/
• Repo: https://github.com/googleapis/google-auth-library-python

Update google-cloud-firestore from 2.11.1 to 2.13.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/google-cloud-firestore
• Repo: https://github.com/googleapis/python-firestore

Update google-cloud-storage from 2.10.0 to 2.12.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/google-cloud-storage
• Repo: https://github.com/googleapis/python-storage

Update googleapis-common-protos from 1.60.0 to 1.61.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/googleapis-common-protos
• Repo: https://github.com/googleapis/python-api-common-protos

Update greenlet from 2.0.2 to 3.0.0.

Changelog

3.0.0

==================

- No changes from 3.0rc3 aside from the version number.

3.0.0rc3

=====================

- Fix an intermittent error during process termination on some
platforms (GCC/Linux/libstdc++).

3.0.0rc2

=====================

- Fix some potential bugs (assertion failures and memory leaks) in
previously-untested error handling code. In some cases, this means
that the process will execute a controlled ``abort()`` after severe
trouble when previously the process might have continued for some
time with a corrupt state. It is unlikely those errors occurred in
practice.
- Fix some assertion errors and potential bugs with re-entrant
switches.
- Fix a potential crash when certain compilers compile greenlet with
high levels of optimization. The symptom would be that switching to
a greenlet for the first time immediately crashes.
- Fix a potential crash when the callable object passed to the
greenlet constructor (or set as the ``greenlet.run`` attribute) has
a destructor attached to it that switches. Typically, triggering
this issue would require an unlikely subclass of
``greenlet.greenlet``.
- Python 3.11+: Fix rare switching errors that could occur when a
garbage collection was triggered during the middle of a switch, and
Python-level code in ``__del__`` or weakref callbacks switched to a
different greenlet and ultimately switched back to the original
greenlet. This often manifested as a ``SystemError``: "switch
returned NULL without an exception set."

For context on the fixes, see `gevent issue 1985
<https://github.com/gevent/gevent/issues/1985>`_.

3.0.0rc1

=====================

- Windows wheels are linked statically to the C runtime in an effort
to prevent import errors on systems without the correct C runtime
installed. It's not clear if this will make the situation better or
worse, so please share your experiences in `issue 346
<https://github.com/python-greenlet/greenlet/issues/346>`_.

Note that this only applies to the binary wheels found on PyPI.
Building greenlet from source defaults to the shared library. Set
the environment variable ``GREENLET_STATIC_RUNTIME=1`` at build time
to change that.
- Build binary wheels for Python 3.12 on macOS.
- Fix compiling greenlet on a debug build of CPython 3.12. There is
`one known issue
<https://github.com/python-greenlet/greenlet/issues/368>`_ that
leads to an interpreter crash on debug builds.
- Python 3.12: Fix walking the frame stack of suspended greenlets.
Previously accessing ``glet.gr_frame.f_back`` would crash due to
`changes in CPython's undocumented internal frame handling <https://github.com/python/cpython/commit/1e197e63e21f77b102ff2601a549dda4b6439455>`_.

Platforms
---------
- Now, greenlet *may* compile and work on Windows ARM64 using
llvm-mingw, but this is untested and unsupported. See `PR
<https://github.com/python-greenlet/greenlet/pull/224>`_ by Adrian
Vladu.
- Now, greenlet *may* compile and work on LoongArch64 Linux systems,
but this is untested and unsupported. See `PR 257
<https://github.com/python-greenlet/greenlet/pull/257/files>`_ by merore.

Known Issues
------------

- There may be (very) subtle issues with tracing on Python 3.12, which
has redesigned the entire tracing infrastructure.

3.0.0a1

====================

- Build binary wheels for S390x Linux. See `PR 358
<https://github.com/python-greenlet/greenlet/pull/358>`_ from Steven
Silvester.
- Fix a rare crash on shutdown seen in uWSGI deployments. See `issue
330 <https://github.com/python-greenlet/greenlet/issues/330>`_ and `PR 356
<https://github.com/python-greenlet/greenlet/pull/356>`_ from Andrew
Wason.
- Make the platform-specific low-level C/assembly snippets stop using
the ``register`` storage class. Newer versions of standards remove
this storage class, and it has been generally ignored by many
compilers for some time. See `PR 347
<https://github.com/python-greenlet/greenlet/pull/347>`_ from Khem
Raj.
- Add initial support for Python 3.12. See `issue
<https://github.com/python-greenlet/greenlet/issues/323>`_ and `PR
<https://github.com/python-greenlet/greenlet/pull/327>`_; thanks go
to (at least) Michael Droettboom, Andreas Motl, Thomas A Caswell,
raphaelauv, Hugo van Kemenade, Mark Shannon, and Petr Viktorin.
- Remove support for end-of-life Python versions, including Python
2.7, Python 3.5 and Python 3.6.
- Require a compiler that supports ``noinline`` directives. See
`issue 271
<https://github.com/python-greenlet/greenlet/issues/266>`_.
- Require a compiler that supports C++11.

Links

• PyPI: https://pypi.org/project/greenlet
• Changelog: https://data.safetycli.com/changelogs/greenlet/
• Docs: https://greenlet.readthedocs.io/

Update grpcio from 1.58.0 to 1.59.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/grpcio
• Homepage: https://grpc.io

Update grpcio-status from 1.58.0 to 1.59.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/grpcio-status
• Homepage: https://grpc.io

Update h5py from 3.9.0 to 3.10.0.

Changelog

Links

• PyPI: https://pypi.org/project/h5py
• Changelog: https://data.safetycli.com/changelogs/h5py/

Update httpcore from 0.18.0 to 1.0.0.

Changelog

1.0.0

From version 1.0 our async support is now optional, as the package has minimal dependencies by default.

For async support use either `pip install 'httpcore[asyncio]'` or `pip install 'httpcore[trio]'`.

The project versioning policy is now explicitly governed by SEMVER. See https://semver.org/.

- Async support becomes fully optional. (809)
- Add support for Python 3.12. (807)

Links

• PyPI: https://pypi.org/project/httpcore
• Changelog: https://data.safetycli.com/changelogs/httpcore/

Update imagecodecs from 2023.9.4 to 2023.9.18.

Changelog

2023.9.18

- Pass 7110 tests.
- Rebuild with updated dependencies fixes CVE-2023-4863.

Links

• PyPI: https://pypi.org/project/imagecodecs
• Changelog: https://data.safetycli.com/changelogs/imagecodecs/
• Homepage: https://www.cgohlke.com

Update imageio from 2.31.3 to 2.31.6.

Changelog

2.31.6

Fix

* Pin pillow below v10.1 to avoid breaking changes ([1046](https://github.com/imageio/imageio/issues/1046)) ([`c97aa5e`](https://github.com/imageio/imageio/commit/c97aa5e3b2006f4dfdbd6005cc664f5ae2646f92))

2.31.5

Fix

* Raise warning instead of error when using `fps` in pillow ([1039](https://github.com/imageio/imageio/issues/1039)) ([`520fe62`](https://github.com/imageio/imageio/commit/520fe62f02f3c566bb46ab3121eed38b379dc1b9))

2.31.4

Fix

* Consistently load GIF frames using the same pixel format ([1036](https://github.com/imageio/imageio/issues/1036)) ([`f4fc7f5`](https://github.com/imageio/imageio/commit/f4fc7f5c49c10cc6da809acc470a70e69ca35248))

Links

• PyPI: https://pypi.org/project/imageio
• Changelog: https://data.safetycli.com/changelogs/imageio/
• Repo: https://github.com/imageio/imageio

Update ipython from 8.15.0 to 8.16.1.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/ipython
• Changelog: https://data.safetycli.com/changelogs/ipython/
• Homepage: https://ipython.org

Update ipywidgets from 8.1.0 to 8.1.1.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/ipywidgets
• Changelog: https://data.safetycli.com/changelogs/ipywidgets/
• Homepage: http://jupyter.org

Update jedi from 0.19.0 to 0.19.1.

Changelog

0.19.1

Changed

- `jedi>=0.17.2`

Links

• PyPI: https://pypi.org/project/jedi
• Changelog: https://data.safetycli.com/changelogs/jedi/
• Repo: https://github.com/davidhalter/jedi

Update jsonschema from 4.19.0 to 4.19.1.

Changelog

4.19.1

=======

* Single label hostnames are now properly considered valid according to the ``hostname`` format.
This is the behavior specified by the relevant RFC (1123).
IDN hostname behavior was already correct.

Links

• PyPI: https://pypi.org/project/jsonschema
• Changelog: https://data.safetycli.com/changelogs/jsonschema/

Update jupyter-client from 8.3.1 to 8.4.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/jupyter-client

Update jupyter-core from 5.3.1 to 5.4.0.

Changelog

5.4.0

([Full Changelog](https://github.com/jupyter/jupyter_core/compare/v5.3.2...d6a748262a44334f27008e8c90d2557f46481f5b))

Maintenance and upkeep improvements

- Add python 3.12 support [367](https://github.com/jupyter/jupyter_core/pull/367) ([blink1073](https://github.com/blink1073))
- Update typings for traitlets 5.11 [366](https://github.com/jupyter/jupyter_core/pull/366) ([blink1073](https://github.com/blink1073))

Contributors to this release

([GitHub contributors page for this release](https://github.com/jupyter/jupyter_core/graphs/contributors?from=2023-09-27&to=2023-10-10&type=c))

[blink1073](https://github.com/search?q=repo%3Ajupyter%2Fjupyter_core+involves%3Ablink1073+updated%3A2023-09-27..2023-10-10&type=Issues) | [davidbrochart](https://github.com/search?q=repo%3Ajupyter%2Fjupyter_core+involves%3Adavidbrochart+updated%3A2023-09-27..2023-10-10&type=Issues) | [jamescooke](https://github.com/search?q=repo%3Ajupyter%2Fjupyter_core+involves%3Ajamescooke+updated%3A2023-09-27..2023-10-10&type=Issues)

<!-- <END NEW CHANGELOG ENTRY> -->

5.3.2

([Full Changelog](https://github.com/jupyter/jupyter_core/compare/v5.3.1...0cf041784533c56da138a0947b6db29999790247))

Bugs fixed

- Fix event loop handling [362](https://github.com/jupyter/jupyter_core/pull/362) ([blink1073](https://github.com/blink1073))

Maintenance and upkeep improvements

- Bump actions/checkout from 3 to 4 [361](https://github.com/jupyter/jupyter_core/pull/361) ([dependabot](https://github.com/dependabot))
- Adopt sp-repo-review [360](https://github.com/jupyter/jupyter_core/pull/360) ([blink1073](https://github.com/blink1073))

Contributors to this release

([GitHub contributors page for this release](https://github.com/jupyter/jupyter_core/graphs/contributors?from=2023-06-14&to=2023-09-27&type=c))

[blink1073](https://github.com/search?q=repo%3Ajupyter%2Fjupyter_core+involves%3Ablink1073+updated%3A2023-06-14..2023-09-27&type=Issues) | [dependabot](https://github.com/search?q=repo%3Ajupyter%2Fjupyter_core+involves%3Adependabot+updated%3A2023-06-14..2023-09-27&type=Issues) | [pre-commit-ci](https://github.com/search?q=repo%3Ajupyter%2Fjupyter_core+involves%3Apre-commit-ci+updated%3A2023-06-14..2023-09-27&type=Issues)

Links

• PyPI: https://pypi.org/project/jupyter-core
• Changelog: https://data.safetycli.com/changelogs/jupyter-core/

Update jupyter-server from 2.7.3 to 2.8.0.

Changelog

2.8.0

([Full Changelog](https://github.com/jupyter-server/jupyter_server/compare/v2.7.3...a984e0771da5db4a14e9ac86a392ad3592b863e5))

Enhancements made

- Added Logs for get_os_path closes issue [1336](https://github.com/jupyter-server/jupyter_server/pull/1336) ([jayeshsingh9767](https://github.com/jayeshsingh9767))

Bugs fixed

- Avoid showing "No answer for 5s" when shutdown is slow [1320](https://github.com/jupyter-server/jupyter_server/pull/1320) ([minrk](https://github.com/minrk))

Maintenance and upkeep improvements

- Update typings for mypy 1.6 [1337](https://github.com/jupyter-server/jupyter_server/pull/1337) ([blink1073](https://github.com/blink1073))
- chore: update pre-commit hooks [1334](https://github.com/jupyter-server/jupyter_server/pull/1334) ([pre-commit-ci](https://github.com/pre-commit-ci))
- Add typings to commonly used APIs [1333](https://github.com/jupyter-server/jupyter_server/pull/1333) ([blink1073](https://github.com/blink1073))
- Update typings for traitlets 5.10 [1330](https://github.com/jupyter-server/jupyter_server/pull/1330) ([blink1073](https://github.com/blink1073))
- Adopt sp-repo-review [1324](https://github.com/jupyter-server/jupyter_server/pull/1324) ([blink1073](https://github.com/blink1073))
- Bump actions/checkout from 3 to 4 [1321](https://github.com/jupyter-server/jupyter_server/pull/1321) ([dependabot](https://github.com/dependabot))

Contributors to this release

([GitHub contributors page for this release](https://github.com/jupyter-server/jupyter_server/graphs/contributors?from=2023-08-31&to=2023-10-16&type=c))

[blink1073](https://github.com/search?q=repo%3Ajupyter-server%2Fjupyter_server+involves%3Ablink1073+updated%3A2023-08-31..2023-10-16&type=Issues) | [dependabot](https://github.com/search?q=repo%3Ajupyter-server%2Fjupyter_server+involves%3Adependabot+updated%3A2023-08-31..2023-10-16&type=Issues) | [jayeshsingh9767](https://github.com/search?q=repo%3Ajupyter-server%2Fjupyter_server+involves%3Ajayeshsingh9767+updated%3A2023-08-31..2023-10-16&type=Issues) | [minrk](https://github.com/search?q=repo%3Ajupyter-server%2Fjupyter_server+involves%3Aminrk+updated%3A2023-08-31..2023-10-16&type=Issues) | [pre-commit-ci](https://github.com/search?q=repo%3Ajupyter-server%2Fjupyter_server+involves%3Apre-commit-ci+updated%3A2023-08-31..2023-10-16&type=Issues) | [welcome](https://github.com/search?q=repo%3Ajupyter-server%2Fjupyter_server+involves%3Awelcome+updated%3A2023-08-31..2023-10-16&type=Issues)

<!-- <END NEW CHANGELOG ENTRY> -->

Links

• PyPI: https://pypi.org/project/jupyter-server
• Changelog: https://data.safetycli.com/changelogs/jupyter-server/

Update jupyterlab from 4.0.5 to 4.0.7.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/jupyterlab
• Changelog: https://data.safetycli.com/changelogs/jupyterlab/

Update jupyterlab-server from 2.24.0 to 2.25.0.

Changelog

2.25.0

([Full Changelog](https://github.com/jupyterlab/jupyterlab_server/compare/v2.24.0...91b576d6a87e2fca0958e815c32391ebc8398945))

Maintenance and upkeep improvements

- Bump openapi deps and support Python 3.8-3.12 [410](https://github.com/jupyterlab/jupyterlab_server/pull/410) ([blink1073](https://github.com/blink1073))
- Bump actions/checkout from 3 to 4 [408](https://github.com/jupyterlab/jupyterlab_server/pull/408) ([dependabot](https://github.com/dependabot))
- Bump apache/skywalking-eyes from 0.4.0 to 0.5.0 [407](https://github.com/jupyterlab/jupyterlab_server/pull/407) ([dependabot](https://github.com/dependabot))

Contributors to this release

([GitHub contributors page for this release](https://github.com/jupyterlab/jupyterlab_server/graphs/contributors?from=2023-07-24&to=2023-09-12&type=c))

[blink1073](https://github.com/search?q=repo%3Ajupyterlab%2Fjupyterlab_server+involves%3Ablink1073+updated%3A2023-07-24..2023-09-12&type=Issues) | [dependabot](https://github.com/search?q=repo%3Ajupyterlab%2Fjupyterlab_server+involves%3Adependabot+updated%3A2023-07-24..2023-09-12&type=Issues) | [pre-commit-ci](https://github.com/search?q=repo%3Ajupyterlab%2Fjupyterlab_server+involves%3Apre-commit-ci+updated%3A2023-07-24..2023-09-12&type=Issues)

<!-- <END NEW CHANGELOG ENTRY> -->

Links

• PyPI: https://pypi.org/project/jupyterlab-server
• Changelog: https://data.safetycli.com/changelogs/jupyterlab-server/

Update jupyterlab-widgets from 3.0.8 to 3.0.9.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/jupyterlab-widgets
• Repo: https://github.com/jupyter-widgets/ipywidgets

Update llvmlite from 0.40.1 to 0.41.1.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/llvmlite
• Docs: http://llvmlite.readthedocs.io

Update Markdown from 3.4.4 to 3.5.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/markdown

Update matplotlib from 3.7.2 to 3.8.0.

Changelog

3.7.3

This is the third bugfix release of the 3.7.x series.

This release contains several bug-fixes and adjustments:

* Add Python 3.12 wheels
* Update the license for the bundled colorbrewer colormap data
* Fix Cairo backend when using cairocffi
* Fix axes_grid1 inset axes with `bbox_inches=tight`
* Fix bugs in `Path3DCollection` / `Poly3DCollection` constructors
* Fix setting array labelcolor on Tick
* Improve compatibility with latest NumPy
* Stop warning when calling `tight_layout` multiple times

Links

• PyPI: https://pypi.org/project/matplotlib
• Changelog: https://data.safetycli.com/changelogs/matplotlib/
• Homepage: https://matplotlib.org

Update mistune from 3.0.1 to 3.0.2.

Changelog

3.0.2

   🐞 Bug Fixes

- Fix RecursionError for lists  -  by lepture [<samp>(44cc6)</samp>](https://github.com/lepture/mistune/commit/44cc62b)

    [View changes on GitHub](https://github.com/lepture/mistune/compare/v3.0.1...v3.0.2)

Links

• PyPI: https://pypi.org/project/mistune
• Changelog: https://data.safetycli.com/changelogs/mistune/

Update msgpack from 1.0.5 to 1.0.7.

Changelog

1.0.7

=====

Release Date: 2023-09-28

* Fix build error of extension module on Windows. (567)
* ``setup.py`` doesn't skip build error of extension module. (568)

1.0.6

=====

Release Date: 2023-09-21

.. note::
v1.0.6 Wheels for Windows don't contain extension module.
Please upgrade to v1.0.7 or newer.

* Add Python 3.12 wheels (517)
* Remove Python 2.7, 3.6, and 3.7 support

Links

• PyPI: https://pypi.org/project/msgpack
• Changelog: https://data.safetycli.com/changelogs/msgpack/

Update nbconvert from 7.8.0 to 7.9.2.

Changelog

7.9.2

([Full Changelog](https://github.com/jupyter/nbconvert/compare/v7.9.1...8e85303e530013f9e6d29be85f25e9602a443194))

Bugs fixed

- Restore ResourcesDict to the public API [2055](https://github.com/jupyter/nbconvert/pull/2055) ([blink1073](https://github.com/blink1073))

Contributors to this release

([GitHub contributors page for this release](https://github.com/jupyter/nbconvert/graphs/contributors?from=2023-10-04&to=2023-10-05&type=c))

[blink1073](https://github.com/search?q=repo%3Ajupyter%2Fnbconvert+involves%3Ablink1073+updated%3A2023-10-04..2023-10-05&type=Issues)

<!-- <END NEW CHANGELOG ENTRY> -->

7.9.1

([Full Changelog](https://github.com/jupyter/nbconvert/compare/v7.9.0...6d679efebf8b6b7c65c4ab0dcb0dec97f6d389b9))

Maintenance and upkeep improvements

- Include tests in sdist [2053](https://github.com/jupyter/nbconvert/pull/2053) ([blink1073](https://github.com/blink1073))

Contributors to this release

([GitHub contributors page for this release](https://github.com/jupyter/nbconvert/graphs/contributors?from=2023-10-04&to=2023-10-04&type=c))

[blink1073](https://github.com/search?q=repo%3Ajupyter%2Fnbconvert+involves%3Ablink1073+updated%3A2023-10-04..2023-10-04&type=Issues)

7.9.0

([Full Changelog](https://github.com/jupyter/nbconvert/compare/v7.8.0...0e36347f31ee0b06d461aaa845e458eb7c9f8fc0))

Maintenance and upkeep improvements

- Update to mermaidjs 10.5.0 [2051](https://github.com/jupyter/nbconvert/pull/2051) ([bollwyvl](https://github.com/bollwyvl))
- Update typing for traitlets 5.11 [2050](https://github.com/jupyter/nbconvert/pull/2050) ([blink1073](https://github.com/blink1073))
- chore: update pre-commit hooks [2049](https://github.com/jupyter/nbconvert/pull/2049) ([pre-commit-ci](https://github.com/pre-commit-ci))
- Fixup typings [2048](https://github.com/jupyter/nbconvert/pull/2048) ([blink1073](https://github.com/blink1073))
- Remove redundant link check in CI [2044](https://github.com/jupyter/nbconvert/pull/2044) ([blink1073](https://github.com/blink1073))
- Bump actions/checkout from 3 to 4 [2042](https://github.com/jupyter/nbconvert/pull/2042) ([dependabot](https://github.com/dependabot))
- Adopt sp-repo-review [2040](https://github.com/jupyter/nbconvert/pull/2040) ([blink1073](https://github.com/blink1073))

Contributors to this release

([GitHub contributors page for this release](https://github.com/jupyter/nbconvert/graphs/contributors?from=2023-08-29&to=2023-10-04&type=c))

[blink1073](https://github.com/search?q=repo%3Ajupyter%2Fnbconvert+involves%3Ablink1073+updated%3A2023-08-29..2023-10-04&type=Issues) | [bollwyvl](https://github.com/search?q=repo%3Ajupyter%2Fnbconvert+involves%3Abollwyvl+updated%3A2023-08-29..2023-10-04&type=Issues) | [dependabot](https://github.com/search?q=repo%3Ajupyter%2Fnbconvert+involves%3Adependabot+updated%3A2023-08-29..2023-10-04&type=Issues) | [pre-commit-ci](https://github.com/search?q=repo%3Ajupyter%2Fnbconvert+involves%3Apre-commit-ci+updated%3A2023-08-29..2023-10-04&type=Issues)

Links

• PyPI: https://pypi.org/project/nbconvert
• Changelog: https://data.safetycli.com/changelogs/nbconvert/

Update nest-asyncio from 1.5.7 to 1.5.8.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

• PyPI: https://pypi.org/project/nest-asyncio
• Repo: https://github.com/erdewit/nest_asyncio

Update networkx from 3.1 to 3.2.

Changelog

Links

• PyPI: https://pypi.org/project/networkx
• Changelog: https://data.safetycli.com/changelogs/networkx/

Update notebook from 7.0.3 to 7.0.6.

Changelog

7.0.6

([Full Changelog](https://github.com/jupyter/notebook/compare/jupyter-notebook/app7.0.5...c62caffb02856737870cbc79a2cdb43b3e89c363))

Bugs fixed

- Updated fav-icon Base URL from JupyterLab PageConfig. [7109](https://github.com/jupyter/notebook/pull/7109) ([jayeshsingh9767](https://github.com/jayeshsingh9767))

Maintenance and upkeep improvements

- Fix typings [7110](https://github.com/jupyter/notebook/pull/7110) ([jtpio](https://github.com/jtpio))
- Bump postcss from 8.4.27 to 8.4.31 [7089](https://github.com/jupyter/notebo

[sweep-ai]

Apply Sweep Rules to your PR?

• Apply: Leftover TODOs in the code should be handled.
• Apply: All new business logic should have corresponding unit tests in the tests/ directory.
• Apply: Any clearly inefficient or repeated code should be optimized or refactored.

[pyup-bot]

Closing this in favor of #167