Skip to content

chore(deps): update dependency jupyter-server to v1 #88

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update dependency jupyter-server to v1 #88

wants to merge 1 commit into from

Conversation

dev-mend-for-github.lhy31512.workers.dev[bot]
Copy link

@dev-mend-for-github.lhy31512.workers.dev dev-mend-for-github.lhy31512.workers.dev bot commented Jan 7, 2025
edited
Loading

This PR contains the following updates:

Package Update Change
jupyter-server major ==0.1.1 -> ==1.0.6

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE Reachability
Medium Medium 4.1 CVE-2020-26232

Release Notes

jupyter-server/jupyter_server (jupyter-server)

v1.0.6

Compare Source

1.0.6 is a security release, fixing one vulnerability:

Changed

v1.0.5

Compare Source

Release 1.0.5

v1.0.4

Compare Source

Release 1.0.4

v1.0.3

Compare Source

v1.0.2

Compare Source

Release 1.0.2

v1.0.1

Compare Source

v1.0.0

Compare Source

Added.

  • Added a basic, styled login.html template. (220, 295)
  • Added new extension manager API for handling server extensions. (248, 265, 275, 303)
  • The favicon and Jupyter logo are now available under jupyter_server's static namespace. (284)

Changed.

  • load_jupyter_server_extension should be renamed to _load_jupyter_server_extension in server extensions. Server now throws a warning when the old name is used. (213)
  • Docs for server extensions now recommend using authenticated decorator for handlers. (219)
  • _load_jupyter_server_paths should be renamed to _load_jupyter_server_points in server extensions. (277)
  • static_url_prefix in ExtensionApps is now a configurable trait. (289)
  • extension_name trait was removed in favor of name. (232)
  • Dropped support for Python 3.5. (296)
  • Made the config_dir_name trait configurable in ConfigManager. (297)

Removed.

  • Removed ipykernel as a dependency of jupyter_server. (255)

Fixed.

  • Prevent a re-definition of prometheus metrics if notebook package already imports them. (#​210)
  • Fixed terminals REST API unit tests that weren't shutting down properly. (221)
  • Fixed jupyter_server on Windows for Python < 3.7. Added patch to handle subprocess cleanup. (240)
  • base_url was being duplicated when getting a url path from the ServerApp. (280)
  • Extension URLs are now properly prefixed with base_url. Previously, all static paths were not. (285)
  • Changed ExtensionApp mixin to inherit from HasTraits. This broke in traitlets 5.0 (294)
  • Replaces urlparse with url_path_join to prevent URL squashing issues. (304)

v0.3.0

Compare Source

Added
  • (#​191) Async kernel managment is now possible using the AsyncKernelManager from jupyter_client
  • (#​201) Parameters can now be passed to new terminals created by the terminals REST API.
Changed
  • (#​196) Documentation was rewritten + refactored to use pydata_sphinx_theme.
  • (#​174) ExtensionHandler was changed to an Mixin class, i.e. ExtensionHandlerMixin
Removed
  • (#​194) The bundlerextension entry point was removed.

v0.2.1

Compare Source

Added
  • pytest-plugin for Jupyter Server.
    • Allows one to write async/await syntax in tests functions.
    • Some particularly useful fixtures include:
      • serverapp: a default ServerApp instance that handles setup+teardown.
      • configurable_serverapp: a function that returns a ServerApp instance.
      • fetch: an awaitable function that tests makes requests to the server API
      • create_notebook: a function that writes a notebook to a given temporary file path.

v0.2.0

Compare Source

Added
  • extension submodule (#​48)
    • ExtensionApp - configurable JupyterApp-subclass for server extensions
      • Most useful for Jupyter frontends, like Notebook, JupyterLab, nteract, voila etc.
      • Launch with entrypoints
      • Configure from file or CLI
      • Add custom templates, static assets, handlers, etc.
      • Static assets are served behind a /static/<extension_name> endpoint.
      • Run server extensions in "standalone mode" (#​70 and #​76)
    • ExtensionHandler - tornado handlers for extensions.
      • Finds static assets at /static/<extension_name>
Changed
  • jupyter serverextension <command> entrypoint has been changed to jupyter server extension <command>.
  • toggle_jupyter_server and validate_jupyter_server function no longer take a Logger object as an argument.
  • Changed testing framework from nosetests to pytest (#​152)
    • Depend on pytest-tornasync extension for handling tornado/asyncio eventloop
    • Depend on pytest-console-scripts for testing CLI entrypoints
  • Added Github actions as a testing framework along side Travis and Azure (#​146)
Removed
  • Removed the option to update root_dir trait in FileContentsManager and MappingKernelManager in ServerApp (#​135)
Fixed
Security
  • Added a "secure_write to function for cookie/token saves (#​77)
  • If you want to rebase/retry this PR, check this box

@dev-mend-for-github.lhy31512.workers.dev dev-mend-for-github.lhy31512.workers.dev bot added the security fix Security fix generated by Mend label Jan 7, 2025
@dev-mend-for-github.lhy31512.workers.dev dev-mend-for-github.lhy31512.workers.dev bot force-pushed the whitesource-remediate/jupyter-server-1.x branch from 5070681 to a7eff8f Compare January 12, 2025 23:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants