Skip to content

dependabot python package: bump markdown from 3.6 to 3.9 #26

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

dependabot python package: bump markdown from 3.6 to 3.9 #26

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 8, 2025

Bumps markdown from 3.6 to 3.9.

Release notes

Sourced from markdown's releases.

Release 3.9.0

Changed

  • Footnotes are now ordered by the occurrence of their references in the document. A new configuration option for the footnotes extension, USE_DEFINITION_ORDER, has been added to support restoring the previous behavior of ordering footnotes by the occurrence of definitions (#1367).

Fixed

  • Ensure inline processing iterates through elements in document order (#1546).
  • Fix handling of incomplete HTML tags in code spans in Python 3.14 (#1547).

Release 3.8.2

Fixed

  • Fix codecs deprecation in Python 3.14.
  • Fix issue with unclosed comment parsing in Python 3.14.
  • Fix issue with unclosed declarations in Python 3.14.
  • Fix issue with unclosed HTML tag <foo and Python 3.14.

Release 3.8.1

Fixed

  • Ensure incomplete markup declaration in raw HTML doesn't crash parser (#1534).
  • Fixed dropped content in md_in_html (#1526).
  • Fixed HTML handling corner case that prevented some content from not being rendered (#1528).

Release 3.8

Changed

  • DRY fix in abbr extension by introducing method create_element (#1483).
  • Clean up test directory by removing some redundant tests and port non-redundant cases to the newer test framework.
  • Improved performance of the raw HTML post-processor (#1510).

Fixed

  • Backslash Unescape IDs set via attr_list on toc (#1493).
  • Ensure md_in_html processes content inside "markdown" blocks as they are parsed outside of "markdown" blocks to keep things more consistent for third-party extensions (#1503).
  • md_in_html handle tags within inline code blocks better (#1075).
  • md_in_html fix handling of one-liner block HTML handling (#1074).
  • Ensure <center> is treated like a block-level element (#1481).
  • Ensure that abbr extension respects AtomicString and does not process perceived abbreviations in these strings (#1512).
  • Ensure smarty extension correctly renders nested closing quotes (#1514).

Release 3.7

... (truncated)

Changelog

Sourced from markdown's changelog.

title: Changelog toc_depth: 2

Python-Markdown Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to the Python Version Specification. See the Contributing Guide for details.

[3.9.0] - 2025-09-04

Changed

  • Footnotes are now ordered by the occurrence of their references in the document. A new configuration option for the footnotes extension, USE_DEFINITION_ORDER, has been added to support restoring the previous behavior of ordering footnotes by the occurrence of definitions (#1367).

Fixed

  • Ensure inline processing iterates through elements in document order (#1546).
  • Fix handling of incomplete HTML tags in code spans in Python 3.14 (#1547).

[3.8.2] - 2025-06-19

Fixed

  • Fix codecs deprecation in Python 3.14 (#1537).
  • Fix issue with unclosed comment parsing in Python 3.14 (#1537).
  • Fix issue with unclosed declarations in Python 3.14 (#1537).
  • Fix issue with unclosed HTML tag <foo and Python 3.14 (#1537).

[3.8.1] - 2025-06-18

Fixed

  • Ensure incomplete markup declaration in raw HTML doesn't crash parser (#1534).
  • Fixed dropped content in md_in_html (#1526).
  • Fixed HTML handling corner case that prevented some content from not being rendered (#1528).

[3.8.0] - 2025-04-09

Changed

  • DRY fix in abbr extension by introducing method create_element (#1483).
  • Clean up test directory by removing some redundant tests and port non-redundant cases to the newer test framework.

... (truncated)

Commits
  • f39cf84 Bump version to 3.9
  • 07bf207 Order footnotes by reference
  • 23c301d Fix failing cases for Python 3.14
  • 4669a09 fix typo
  • d9c8431 Bump version to 3.8.2
  • 9980cb5 Fixes for Python 3.14
  • 3561310 Properly document version specification.
  • 3bb9d42 Update documentation for release process
  • 3870f20 Bump version to 3.8.1
  • 8207214 Ensure incomplete markup declaration in raw HTML doesn't crash parser.
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
dependabot python package: bump markdown from 3.6 to 3.9
6af3231 
Bumps [markdown](https://github.com/Python-Markdown/markdown) from 3.6 to 3.9.
- [Release notes](https://github.com/Python-Markdown/markdown/releases)
- [Changelog](https://github.com/Python-Markdown/markdown/blob/master/docs/changelog.md)
- [Commits](Python-Markdown/markdown@3.6...3.9.0)

---
updated-dependencies:
- dependency-name: markdown
  dependency-version: '3.9'
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Sep 8, 2025

Labels

The following labels could not be found: dependancies, pip. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot bot mentioned this pull request Sep 8, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@githubofkrishnadhas githubofkrishnadhas

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@githubofkrishnadhas