chore(deps): bump the uv group across 1 directory with 11 updates#212
Open
dependabot[bot] wants to merge 1 commit into
Open
chore(deps): bump the uv group across 1 directory with 11 updates#212dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the uv group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [marimo](https://github.com/marimo-team/marimo) | `0.23.6` | `0.23.9` | | [authlib](https://github.com/authlib/authlib) | `1.6.9` | `1.6.12` | | [bleach](https://github.com/mozilla/bleach) | `6.3.0` | `6.4.0` | | [cryptography](https://github.com/pyca/cryptography) | `46.0.7` | `48.0.1` | | [idna](https://github.com/kjd/idna) | `3.11` | `3.15` | | [mistune](https://github.com/lepture/mistune) | `3.2.0` | `3.3.0` | | [nbconvert](https://github.com/jupyter/nbconvert) | `7.17.0` | `7.17.1` | | [soupsieve](https://github.com/facelessuser/soupsieve) | `2.8.3` | `2.8.4` | | [starlette](https://github.com/Kludex/starlette) | `0.52.1` | `1.3.1` | | [tornado](https://github.com/tornadoweb/tornado) | `6.5.5` | `6.5.7` | | [urllib3](https://github.com/urllib3/urllib3) | `2.6.3` | `2.7.0` | Updates `marimo` from 0.23.6 to 0.23.9 - [Release notes](https://github.com/marimo-team/marimo/releases) - [Commits](marimo-team/marimo@0.23.6...0.23.9) Updates `authlib` from 1.6.9 to 1.6.12 - [Release notes](https://github.com/authlib/authlib/releases) - [Changelog](https://github.com/authlib/authlib/blob/1.6.12/docs/changelog.rst) - [Commits](authlib/authlib@v1.6.9...1.6.12) Updates `bleach` from 6.3.0 to 6.4.0 - [Changelog](https://github.com/mozilla/bleach/blob/main/CHANGES) - [Commits](mozilla/bleach@v6.3.0...v6.4.0) Updates `cryptography` from 46.0.7 to 48.0.1 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@46.0.7...48.0.1) Updates `idna` from 3.11 to 3.15 - [Release notes](https://github.com/kjd/idna/releases) - [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.md) - [Commits](kjd/idna@v3.11...v3.15) Updates `mistune` from 3.2.0 to 3.3.0 - [Release notes](https://github.com/lepture/mistune/releases) - [Changelog](https://github.com/lepture/mistune/blob/main/docs/changes.rst) - [Commits](lepture/mistune@v3.2.0...v3.3.0) Updates `nbconvert` from 7.17.0 to 7.17.1 - [Release notes](https://github.com/jupyter/nbconvert/releases) - [Changelog](https://github.com/jupyter/nbconvert/blob/main/CHANGELOG.md) - [Commits](jupyter/nbconvert@v7.17.0...v7.17.1) Updates `soupsieve` from 2.8.3 to 2.8.4 - [Release notes](https://github.com/facelessuser/soupsieve/releases) - [Commits](facelessuser/soupsieve@2.8.3...2.8.4) Updates `starlette` from 0.52.1 to 1.3.1 - [Release notes](https://github.com/Kludex/starlette/releases) - [Changelog](https://github.com/Kludex/starlette/blob/main/docs/release-notes.md) - [Commits](Kludex/starlette@0.52.1...1.3.1) Updates `tornado` from 6.5.5 to 6.5.7 - [Changelog](https://github.com/tornadoweb/tornado/blob/master/docs/releases.rst) - [Commits](tornadoweb/tornado@v6.5.5...v6.5.7) Updates `urllib3` from 2.6.3 to 2.7.0 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](urllib3/urllib3@2.6.3...2.7.0) --- updated-dependencies: - dependency-name: marimo dependency-version: 0.23.9 dependency-type: direct:production dependency-group: uv - dependency-name: authlib dependency-version: 1.6.12 dependency-type: indirect dependency-group: uv - dependency-name: bleach dependency-version: 6.4.0 dependency-type: indirect dependency-group: uv - dependency-name: cryptography dependency-version: 48.0.1 dependency-type: indirect dependency-group: uv - dependency-name: idna dependency-version: '3.15' dependency-type: indirect dependency-group: uv - dependency-name: mistune dependency-version: 3.3.0 dependency-type: indirect dependency-group: uv - dependency-name: nbconvert dependency-version: 7.17.1 dependency-type: indirect dependency-group: uv - dependency-name: soupsieve dependency-version: 2.8.4 dependency-type: indirect dependency-group: uv - dependency-name: starlette dependency-version: 1.3.1 dependency-type: indirect dependency-group: uv - dependency-name: tornado dependency-version: 6.5.7 dependency-type: indirect dependency-group: uv - dependency-name: urllib3 dependency-version: 2.7.0 dependency-type: indirect dependency-group: uv ... Signed-off-by: dependabot[bot] <support@github.com>
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.



Bumps the uv group with 11 updates in the / directory:
0.23.60.23.91.6.91.6.126.3.06.4.046.0.748.0.13.113.153.2.03.3.07.17.07.17.12.8.32.8.40.52.11.3.16.5.56.5.72.6.32.7.0Updates
marimofrom 0.23.6 to 0.23.9Release notes
Sourced from marimo's releases.
... (truncated)
Commits
c3c0ee3release: 0.23.9 (#9790)fdd55c8fix: escape user-controlled file_key in service worker injection (#9789)dc35cdffeat(sharing): add MARIMO_RESTRICT_SHARING env var machine-wide (#9756)6dcaff7feat: non-destructive local takeover (read-only viewer + bidirectional takeov...d0352e2slides: add cells with no output to the minimap & viewer (#9771)d9ab41afix completions in slides view (#9769)c0f07c0fix: arg/kwarg collision for local numpy vars in caching (#9751)8d6e540feat(server): add GET /api/kernel/status endpoint (#9768)e55e7bafix(runtime): don't shadow builtin print unless mo.Thread is used (#9765) (#9...4d47f09fix(lsp): suppress marimo hover tooltip for all LSP providers, not just pylsp...Updates
authlibfrom 1.6.9 to 1.6.12Release notes
Sourced from authlib's releases.
Changelog
Sourced from authlib's changelog.
Commits
e46e515chore: bump to 1.6.129babc13fix: redirecting to unvalidated redirect_uri on InvalidScopeError in OIDC grants0dc0e5bchore: bump to 1.6.11aa7b8e4Merge commit from fork401a770fix: CSRF issue with starlette clientef09aebchore: release 1.6.103be0846fix: redirecting to unvalidated redirect_uri on UnsupportedResponseTypeErrorUpdates
bleachfrom 6.3.0 to 6.4.0Changelog
Sourced from bleach's changelog.
Commits
f0355a7fix: fix last release date in CHANGESae4e8a2chore: bleach 6.4.0 and final release970df58fix: uri-sanitization in formaction attributes7c4867cfix: xss bypass in allowed protocol test using unicode invisible characters913ab75fix: reduce redundancy in workflow jobs218c15afix: rework pip caching4f0b097fix: fix tox platform restrictionse95a79dchore: update pytest91539d4Bump actions/cache from 5.0.3 to 5.0.4cd47b4cfix: handle left-angle-bracket that's not a tag (#733)Updates
cryptographyfrom 46.0.7 to 48.0.1Changelog
Sourced from cryptography's changelog.
... (truncated)
Commits
de987ce48.0.1 version bump and changelog (#14996)8e03e30bump for 48.0.0 release (#14796)295e0d2Add AGENTS.md with CLAUDE.md symlink (#14794)104a2deBump BoringSSL, OpenSSL, AWS-LC in CI (#14793)67ec1e5call check_length early on AesSiv::encrypt (#14792)b2da57achangelog for mldsa/mlkem for openssl (#14791)3cf44adML-KEM OpenSSL support (#14781)2e31639ML-DSA OpenSSL support (#14773)5affe5afix rust nightly clippy (#14790)2e73ca4bump rust-openssl dep and update EcPoint::mul_generator to mul_generator2 (#1...Updates
idnafrom 3.11 to 3.15Changelog
Sourced from idna's changelog.
Commits
af30a09Release 3.1530314d4Pre-release 3.15rc005d4b21Merge pull request #237 from kjd/convert-docs-to-markdown2987fdbConvert README and HISTORY from reStructuredText to Markdown59fa800Merge pull request #236 from kjd/dependabot/github_actions/actions-f3e34333eadef6983Merge branch 'master' into dependabot/github_actions/actions-f3e34333eabbd8004Merge pull request #234 from StanFromIreland/patch-1edd07c0Bump github/codeql-action from 3.35.2 to 4.35.2 in the actions group5557db0Merge branch 'master' into patch-1f11746cMerge pull request #235 from StanFromIreland/patch-2Updates
mistunefrom 3.2.0 to 3.3.0Release notes
Sourced from mistune's releases.
Changelog
Sourced from mistune's changelog.
Commits
15c3b79chore: release 3.3.0bdc01adtests: increase run time on pypy7cf1814tests: increase run time for pypy6dfdc3dtests: add more tests17c50f6chore: fix mypy issues63abe4bchore: use ruff check and formate6c1b18chore: resolve mypy issuesdcf8902test(math): cover escaped math outputc4093c4fix(toc): avoid generated id collisionse3e51defix(image): validate figure width optionUpdates
nbconvertfrom 7.17.0 to 7.17.1Release notes
Sourced from nbconvert's releases.
Changelog
Sourced from nbconvert's changelog.
Commits
78ed308Publish 7.17.1f090a64ruff formatb3b6ec0chore: update pre-commit hooks (#2277)be4841fignore silly security lint in tests26d57b2fix type annotation on Lexer0e6b8ccMerge commit from forkba5e5cdMerge commit from fork1db0c88Specify python version for pre (#2276)7473fc3chore: update pre-commit hooks (#2242)4322f7fBump the actions group across 1 directory with 2 updates (#2273)Updates
soupsievefrom 2.8.3 to 2.8.4Release notes
Sourced from soupsieve's releases.
Commits
28108abLimit excessive selectorsef18872Fix test for Windowseb43976Merge commit from fork3a661b2Fix typo in pseudo-classes.md (#294)0cb533dUpdate hatchling version requirement in pyproject.toml (#290)Updates
starlettefrom 0.52.1 to 1.3.1Release notes
Sourced from starlette's releases.
... (truncated)
Changelog
Sourced from starlette's changelog.
... (truncated)
Commits
8ebffd0Version 1.3.1 (#3330)25b8e17EnforceFormParserlimits in parser callbacks (#3331)dba1c4bEnforcemax_fieldsandmax_part_sizeinFormParser(#3329)45e51dcUseStarletteDeprecationWarninginstead ofDeprecationWarning(#3119)5f8610cVersion 1.3.0 (#3327)167b585Buildrequest.urlfrom structured components (#3326)3730925Useremoveprefixto strip weak ETag indicator inis_not_modified(#3193)e6f7ad1avoid collapsing exception groups from user code (#2830)115228fAnnotate URLPath protocol parameter with Literal (#3285)113f193docs: replace inline ASGI server list with link to canonical implemen… (#3204)Updates
tornadofrom 6.5.5 to 6.5.7Changelog
Sourced from tornado's changelog.
... (truncated)
Commits
48fc2d4Merge pull request #3633 from bdarnell/curl-reset-654ae1dddRelease notes and version bump for 6.5.73154caacurl_httpclient: Reset the curl object before putting it on the freelist7d869c0Merge pull request #3631 from bdarnell/cve-links288241fdocs: Use the correct link syntax8da981cdocs: Add CVE links to 6.5.6 release notesaba2569Merge pull request #3626 from bdarnell/fixes-656a24b260httpclient_test: Accept an additional error message varianta74240aRelease notes and ver...Description has been truncated