Sourced from sphinx's releases.

v6.0.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Sourced from sphinx's changelog.

Release 6.0.0 (released Dec 29, 2022)

Dependencies

• #10468: Drop Python 3.6 support
• #10470: Drop Python 3.7, Docutils 0.14, Docutils 0.15, Docutils 0.16, and Docutils 0.17 support. Patch by Adam Turner

Incompatible changes

• #7405: Removed the jQuery and underscore.js JavaScript frameworks.

  These frameworks are no longer be automatically injected into themes from Sphinx 6.0. If you develop a theme or extension that uses the jQuery, $, or $u global objects, you need to update your JavaScript to modern standards, or use the mitigation below.

  The first option is to use the sphinxcontrib.jquery_ extension, which has been developed by the Sphinx team and contributors. To use this, add sphinxcontrib.jquery to the extensions list in conf.py, or call app.setup_extension("sphinxcontrib.jquery") if you develop a Sphinx theme or extension.

  The second option is to manually ensure that the frameworks are present. To re-add jQuery and underscore.js, you will need to copy jquery.js and underscore.js from the Sphinx repository_ to your static directory, and add the following to your layout.html:

  .. code-block:: html+jinja

  {%- block scripts %} {{ super() }} {%- endblock %}

  .. _sphinxcontrib.jquery: https://github.com/sphinx-contrib/jquery/

  Patch by Adam Turner.

• #10471, #10565: Removed deprecated APIs scheduled for removal in Sphinx 6.0. See :ref:dev-deprecated-apis for details. Patch by Adam Turner.

• #10901: C Domain: Remove support for parsing pre-v3 style type directives and roles. Also remove associated configuration variables c_allow_pre_v3 and c_warn_on_allowed_pre_v3. Patch by Adam Turner.

Features added

... (truncated)

• 5b56a23 Bump to 6.0.0 final
• f1d1e9c Update coverage workflow for Tox 4
• 66a738c Update coverage workflow for new configuration location
• 041e5f8 Add test coverage for 'today_fmt' reference substitution (#10980)
• da25145 Remove unnecessary conditional import in sphinx.ext.napoleon (#11043)
• 45a0ea9 Migrate coveragepy config into pyproject.toml (#11025)
• 3ec54f1 Create a pydata_sphinx_theme section in usage examples (#11046)
• 32bce8f Copy edit the tutorial (#11049)
• 9844162 Fix example using add_config_value (#10937)
• bf4a626 RTD builder: add graphviz depedendency (#11040)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's releases.

v4.4.0

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Sourced from sphinx's changelog.

Release 4.4.0 (released Jan 17, 2022)

Dependencies

• #10007: Use importlib_metadata for python-3.9 or older
• #10007: Drop setuptools

Features added

• #9075: autodoc: Add a config variable :confval:autodoc_typehints_format to suppress the leading module names of typehints of function signatures (ex. io.StringIO -> StringIO)
• #9831: Autosummary now documents only the members specified in a module's __all__ attribute if :confval:autosummary_ignore_module_all is set to False. The default behaviour is unchanged. Autogen also now supports this behavior with the --respect-module-all switch.
• #9555: autosummary: Improve error messages on failure to load target object
• #9800: extlinks: Emit warning if a hardcoded link is replaceable by an extlink, suggesting a replacement.
• #9961: html: Support nested HTML elements in other HTML builders
• #10013: html: Allow to change the loading method of JS via loading_method parameter for :meth:Sphinx.add_js_file()
• #9551: html search: "Hide Search Matches" link removes "highlight" parameter from URL
• #9815: html theme: Wrap sidebar components in div to allow customizing their layout via CSS
• #9827: i18n: Sort items in glossary by translated terms
• #9899: py domain: Allows to specify cross-reference specifier (. and ~) as :type: option
• #9894: linkcheck: add option linkcheck_exclude_documents to disable link checking in matched documents.
• #9793: sphinx-build: Allow to use the parallel build feature in macOS on macOS and Python3.8+
• #10055: sphinx-build: Create directories when -w option given
• #9993: std domain: Allow to refer an inline target (ex. ``_target name```) via :rst:role:ref` role
• #9981: std domain: Strip value part of the option directive from general index
• #9391: texinfo: improve variable in samp role
• #9578: texinfo: Add :confval:texinfo_cross_references to disable cross references for readability with standalone readers
• #9822 (and #9062), add new Intersphinx role :rst:role:external for explict lookup in the external projects, without resolving to the local project.

Bugs fixed

• #9866: autodoc: doccomment for the imported class was ignored

... (truncated)

• 88f9647 Bump to 4.4.0 final
• fc428ad Merge pull request #9822 from jakobandersen/intersphinx_role
• 5d595ec intersphinx role, simplify role_name check
• 6ee0ecb intersphinx role, simplify role name matching
• 3bf8bcd intersphinx role, update docs
• c11b109 intersphinx role: :external+inv:: instead of :external:inv+:
• 9589a2b intersphinx role, remove redundant method
• 941db55 intersphinx role, fix flake8 warnings
• 9a3f2b8 intersphinx role, CHANGES
• 540d760 intersphinx role, documentation
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's changelog.

Release 4.2.0 (released Sep 12, 2021)

Features added

• #9445: autodoc: Support class properties
• #9479: autodoc: Emit a warning if target is a mocked object
• #9560: autodoc: Allow to refer NewType instances with module name in Python 3.10 or above
• #9447: html theme: Expose the version of Sphinx in the form of tuple as a template variable sphinx_version_tuple
• #9594: manpage: Suppress the title of man page if description is empty
• #9445: py domain: :py:property: directive supports :classmethod: option to describe the class property
• #9524: test: SphinxTestApp can take builddir as an argument
• #9535: C and C++, support more fundamental types, including GNU extensions.

Bugs fixed

• #9608: apidoc: apidoc does not generate a module definition for implicit namespace package
• #9504: autodoc: generate incorrect reference to the parent class if the target class inherites the class having _name attribute
• #9537, #9589: autodoc: Some objects under typing module are not displayed well with the HEAD of 3.10
• #9487: autodoc: typehint for cached_property is not shown
• #9509: autodoc: AttributeError is raised on failed resolving typehints
• #9518: autodoc: autodoc_docstring_signature does not effect to __init__() and __new__()
• #9522: autodoc: PEP 585 style typehints having arguments (ex. list[int]) are not displayed well
• #9481: autosummary: some warnings contain non-existing filenames
• #9568: autosummary: summarise overlined sectioned headings correctly
• #9600: autosummary: Type annotations which contain commas in autosummary table are not removed completely
• #9481: c domain: some warnings contain non-existing filenames
• #9481: cpp domain: some warnings contain non-existing filenames
• #9456: html search: abbreation marks are inserted to the search result if failed to fetch the content of the page
• #9617: html search: The JS requirement warning is shown if browser is slow
• #9267: html theme: CSS and JS files added by theme were loaded twice
• #9585: py domain: :type: option for :rst:dir:py:property directive does not create a hyperlink
• #9576: py domain: Literal typehint was converted to a cross reference
• #9535 comment: C++, fix parsing of defaulted function parameters that are function pointers.
• #9564: smartquotes: don't adjust typography for text with language-highlighted :code: role.

... (truncated)

• 21db4b1 Bump to 4.2.0 final
• 2390ce6 CHANGES: Merge 4.1.3 (unreleased) to 4.2.0
• b67624e Merge pull request #9627 from sphinx-doc/bot/pull-translations
• 50d7bfa Update message catalogs
• 260f217 Merge pull request #9594 from hkuno/pr/no_empty_desc_4.x
• fb141c3 Update CHANGES for PR #9594
• 5719299 Add a testcase for #9694
• c44ee0e Merge pull request #9611 from tk0miya/9560_NewType_module
• 8416813 Merge pull request #9616 from jdufresne/fix-url
• 3a67b49 Update CHANGES for PR #9617
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's changelog.

Release 4.1.1 (released Jul 15, 2021)

Dependencies

• #9434: sphinxcontrib-htmlhelp-2.0.0 or above
• #9434: sphinxcontrib-serializinghtml-1.1.5 or above

Bugs fixed

• #9438: html: HTML logo or Favicon specified as file not being found on output

Release 4.1.0 (released Jul 12, 2021)

Dependencies

• Support jinja2-3.0

Deprecated

• The app argument of sphinx.environment.BuildEnvironment becomes required
• sphinx.application.Sphinx.html_theme
• sphinx.ext.autosummary._app
• sphinx.util.docstrings.extract_metadata()

Features added

• #8107: autodoc: Add class-doc-from option to :rst:dir:autoclass directive to control the content of the specific class like :confval:autoclass_content
• #8588: autodoc: :confval:autodoc_type_aliases now supports dotted name. It allows you to define an alias for a class with module name like foo.bar.BazClass
• #9175: autodoc: Special member is not documented in the module
• #9195: autodoc: The arguments of typing.Literal are wrongly rendered
• #9185: autodoc: :confval:autodoc_typehints allows 'both' setting to allow typehints to be included both in the signature and description
• #4257: autodoc: Add :confval:autodoc_class_signature to separate the class entry and the definition of __init__() method
• #8061, #9218: autodoc: Support variable comment for alias classes
• #3014: autodoc: Add :event:autodoc-process-bases to modify the base classes of the class definitions
• #9272: autodoc: Render enum values for the default argument value better

... (truncated)

• 564439e Bump to 4.1.1 final
• ffa0831 Merge pull request #9448 from tk0miya/9434_update_deps
• 5daedcf Fix #9434: Update dependencies for bundled builders
• f3a3bd2 Update CHANGES for PR #9440
• 63001f3 Merge pull request #9440 from tronical/logo-regression-fix
• 3a50abc Fix handling of local paths in html_logo/html_favicon directorives in conf.py
• 3c3a734 Bump version
• bdcd161 Bump to 4.1.0 final
• 4a2f5df Merge branch '9299' into 4.x
• e6d3adf intersphinx: Add testcase for case insensitive term match (refs: #9299)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's changelog.

Release 5.0.0 (released May 30, 2022)

Dependencies

5.0.0 b1

• #10164: Support Docutils 0.18_. Patch by Adam Turner.

.. _Docutils 0.18: https://docutils.sourceforge.io/RELEASE-NOTES.html#release-0-18-2021-10-26

Incompatible changes

5.0.0 b1

• #10031: autosummary: sphinx.ext.autosummary.import_by_name() now raises ImportExceptionGroup instead of ImportError when it failed to import target object. Please handle the exception if your extension uses the function to import Python object. As a workaround, you can disable the behavior via grouped_exception=False keyword argument until v7.0.
• #9962: texinfo: Customizing styles of emphasized text via @definfoenclose command was not supported because the command was deprecated since texinfo 6.8
• #2068: :confval:intersphinx_disabled_reftypes has changed default value from an empty list to ['std:doc'] as avoid too surprising silent intersphinx resolutions. To migrate: either add an explicit inventory name to the references intersphinx should resolve, or explicitly set the value of this configuration variable to an empty list.
• #10197: html theme: Reduce body_min_width setting in basic theme to 360px
• #9999: LaTeX: separate terms from their definitions by a CR (refs: #9985)
• #10062: Change the default language to 'en' if any language is not set in conf.py

5.0.0 final

• #10474: :confval:language does not accept None as it value. The default value of language becomes to 'en' now.

Deprecated

5.0.0 b1

• #10028: jQuery and underscore.js will no longer be automatically injected into themes from Sphinx 6.0. If you develop a theme or extension that uses the jQuery, $, or $u global objects, you need to update your JavaScript or use the mitigation below.

... (truncated)

• 953002e Bump to 5.0.0 final
• 3d3e932 Merge pull request #10463 from AA-Turner/fix-css-docutils-0-18
• 9298b3e Update message catalogs
• bdeb627 Merge pull request #10486 from tk0miya/fix_babel_extract_message
• 16ca323 Fix imgconverter: Failed to extract translation messages
• dc30920 Merge pull request #10481 from AA-Turner/lang-none-en
• 2004149 Update test
• 78c478a Merge remote-tracking branch 'upstream/5.0.x' into lang-none-en
• 479e482 Update warning, revert my original warning patch
• fb6db30 Update comment
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from semantic-version's changelog.

2.9.0 (2022-02-06)

New:

* Add support for Django 3.1, 3.2, 4.0
* Add support for Python 3.7 / 3.8 / 3.9 / 3.10

2.8.5 (2020-04-29)

Bugfix:

* `98 <https://github.com/rbarrois/python-semanticversion/issues/98>`_:
  Properly handle wildcards in ``SimpleSpec`` (e.g. ``==1.2.*``).

2.8.4 (2019-12-21)

Bugfix:

* `[#89](https://github.com/rbarrois/python-semanticversion/issues/89) <https://github.com/rbarrois/python-semanticversion/issues/89>`_:
  Properly coerce versions with leading zeroes in components (e.g.
  ``1.01.007``)

2.8.3 (2019-11-21)

New: - Add Clause.prettyprint() for debugging

Bugfix:

* `[#86](https://github.com/rbarrois/python-semanticversion/issues/86) <https://github.com/rbarrois/python-semanticversion/issues/86>`_:
  Fix handling of prerelease ranges within `NpmSpec`

2.8.2 (2019-09-06)

Bugfix:

* `[#82](https://github.com/rbarrois/python-semanticversion/issues/82) <https://github.com/rbarrois/python-semanticversion/issues/82>`_:
  Restore computation of ``Spec.specs`` for single-term expressions
  (``>=0.1.2``)

... (truncated)

• 5f2bf35 Preparing release 2.9.0
• 2713cf3 doc: Remove remaining Sphinx markup from README
• 4fcc147 docs: Update CI location
• 7e59a4b Improve documentation
• 81a4730 Remove Python 3.4 from testing matrix
• 8abf003 Add support for Django 4.0
• 63720c7 Extend test matrix for Python 3.10 / Django 3.2
• f67ece3 Remove ambiguous floats in .yml files
• fa092f7 Add support for Python 3.9
• 3db4701 Add support for Django 3.1
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sphinx's changelog.

Release 4.3.0 (released Nov 11, 2021)

Dependencies

• Support Python 3.10

Incompatible changes

• #9649: searchindex.js: the embedded data has changed format to allow objects with the same name in different domains.
• #9672: The rendering of Python domain declarations is implemented with more docutils nodes to allow better CSS styling. It may break existing styling.
• #9672: the signature of :py:meth:domains.py.PyObject.get_signature_prefix has changed to return a list of nodes instead of a plain string.
• #9695: domains.js.JSObject.display_prefix has been changed into a method get_display_prefix which now returns a list of nodes instead of a plain string.
• #9695: The rendering of Javascript domain declarations is implemented with more docutils nodes to allow better CSS styling. It may break existing styling.
• #9450: mathjax: Load MathJax via "defer" strategy

Deprecated

• sphinx.ext.autodoc.AttributeDocumenter._datadescriptor
• sphinx.writers.html.HTMLTranslator._fieldlist_row_index
• sphinx.writers.html.HTMLTranslator._table_row_index
• sphinx.writers.html5.HTML5Translator._fieldlist_row_index
• sphinx.writers.html5.HTML5Translator._table_row_index

Features added

• #9639: autodoc: Support asynchronous generator functions
• #9664: autodoc: autodoc-process-bases supports to inject reST snippet as a base class
• #9691: C, added new info-field retval for :rst:dir:c:function and :rst:dir:c:macro.
• C++, added new info-field retval for :rst:dir:cpp:function.
• #9618: i18n: Add :confval:gettext_allow_fuzzy_translations to allow "fuzzy" messages for translation
• #9672: More CSS classes on Python domain descriptions
• #9695: More CSS classes on Javascript domain descriptions
• #9683: Revert the removal of add_stylesheet() API. It will be kept until

... (truncated)

• 3001cc9 Bump to 4.3.0 final
• d321a97 Merge pull request #9837 from tk0miya/9833_RemovedInSphinx60Warning
• 5339636 Fix the type of deprecation warning for get_signature_prefix (refs: #9833)
• 5999cdb Merge pull request #9833 from jakobandersen/py_get_signature_prefix
• 63bd4b8 Use warnings.warn and deprecation warning
• 096e286 Merge pull request #9628 from tk0miya/9623_suppress_warnings_for_excluded_doc...
• 1317eee Merge pull request #9828 from tk0miya/9618_gettext_allow_fuzzy_translations
• 7357b17 Merge branch '4.x' into 9623_suppress_warnings_for_excluded_document_in_toctree
• 22bec4f Fix #9623: Separate warning type 'toc.not_readable' to 'toc.excluded'
• 563936b Merge pull request #9829 from tk0miya/9450_load_mathjax_as_defer
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pyyaml's changelog.

6.0 (2021-10-13)

• yaml/pyyaml#327 -- Change README format to Markdown
• yaml/pyyaml#483 -- Add a test for YAML 1.1 types
• yaml/pyyaml#497 -- fix float resolver to ignore . and ._
• yaml/pyyaml#550 -- drop Python 2.7
• yaml/pyyaml#553 -- Fix spelling of “hexadecimal”
• yaml/pyyaml#556 -- fix representation of Enum subclasses
• yaml/pyyaml#557 -- fix libyaml extension compiler warnings
• yaml/pyyaml#560 -- fix ResourceWarning on leaked file descriptors
• yaml/pyyaml#561 -- always require Loader arg to yaml.load()
• yaml/pyyaml#564 -- remove remaining direct distutils usage

5.4.1 (2021-01-20)

• yaml/pyyaml#480 -- Fix stub compat with older pyyaml versions that may unwittingly load it

5.4 (2021-01-19)

• yaml/pyyaml#407 -- Build modernization, remove distutils, fix metadata, build wheels, CI to GHA
• yaml/pyyaml#472 -- Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader
• yaml/pyyaml#441 -- Fix memory leak in implicit resolver setup
• yaml/pyyaml#392 -- Fix py2 copy support for timezone objects
• yaml/pyyaml#378 -- Fix compatibility with Jython

5.3.1 (2020-03-18)

• yaml/pyyaml#386 -- Prevents arbitrary code execution during python/object/new constructor

5.3 (2020-01-06)

• yaml/pyyaml#290 -- Use is instead of equality for comparing with None
• yaml/pyyaml#270 -- Fix typos and stylistic nit
• yaml/pyyaml#309 -- Fix up small typo
• yaml/pyyaml#161 -- Fix handling of slots
• yaml/pyyaml#358 -- Allow calling add_multi_constructor with None
• yaml/pyyaml#285 -- Add use of safe_load() function in README
• yaml/pyyaml#351 -- Fix reader for Unicode code points over 0xFFFF
• yaml/pyyaml#360 -- Enable certain unicode tests when maxunicode not > 0xffff
• yaml/pyyaml#359 -- Use full_load in yaml-highlight example
• yaml/pyyaml#244 -- Document that PyYAML is implemented with Cython
• yaml/pyyaml#329 -- Fix for Python 3.10
• yaml/pyyaml#310 -- Increase size of index, line, and column fields
• yaml/pyyaml#260 -- Remove some unused imports
• yaml/pyyaml#163 -- Create timezone-aware datetimes when parsed as such
• yaml/pyyaml#363 -- Add tests for timezone

5.2 (2019-12-02)

... (truncated)

• 8cdff2c 6.0 release
• a4fb55e Update Python 3.10 versions for Windows build
• e45b964 Add Python 3.10 to tox.ini
• 4808fba 6.0b1 release
• d5aba40 Omnibus CI/artifact build update
• a6d384c Various setup fixes
• 8f3f979 No longer using appveyor
• c274365 The yaml.load{,_all} functions require Loader= now
• 2f87ac4 Add a basic test file for yaml.load and yaml.dump
• 7bd92df Makefile tweaks
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pyyaml's changelog.

5.4.1 (2021-01-20)

• yaml/pyyaml#480 -- Fix stub compat with older pyyaml versions that may unwittingly load it

5.4 (2021-01-19)

• yaml/pyyaml#407 -- Build modernization, remove distutils, fix metadata, build wheels, CI to GHA
• yaml/pyyaml#472 -- Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader
• yaml/pyyaml#441 -- Fix memory leak in implicit resolver setup
• yaml/pyyaml#392 -- Fix py2 copy support for timezone objects
• yaml/pyyaml#378 -- Fix compatibility with Jython

5.3.1 (2020-03-18)

• yaml/pyyaml#386 -- Prevents arbitrary code execution during python/object/new constructor

5.3 (2020-01-06)

• yaml/pyyaml#290 -- Use is instead of equality for comparing with None
• yaml/pyyaml#270 -- Fix typos and stylistic nit
• yaml/pyyaml#309 -- Fix up small typo
• yaml/pyyaml#161 -- Fix handling of slots
• yaml/pyyaml#358 -- Allow calling add_multi_constructor with None
• yaml/pyyaml#285 -- Add use of safe_load() function in README
• yaml/pyyaml#351 -- Fix reader for Unicode code points over 0xFFFF
• yaml/pyyaml#360 -- Enable certain unicode tests when maxunicode not > 0xffff
• yaml/pyyaml#359 -- Use full_load in yaml-highlight example
• yaml/pyyaml#244 -- Document that PyYAML is implemented with Cython
• yaml/pyyaml#329 -- Fix for Python 3.10
• yaml/pyyaml#310 -- Increase size of index, line, and column fields
• yaml/pyyaml#260 -- Remove some unused imports
• yaml/pyyaml#163 -- Create timezone-aware datetimes when parsed as such
• yaml/pyyaml#363 -- Add tests for timezone

5.2 (2019-12-02)

• Repair incompatibilities introduced with 5.1. The default Loader was changed, but several methods like add_constructor still used the old default yaml/pyyaml#279 -- A more flexible fix for custom tag constructors yaml/pyyaml#287 -- Change default loader for yaml.add_constructor yaml/pyyaml#305 -- Change default loader for add_implicit_resolver, add_path_resolver
• Make FullLoader safer by removing python/object/apply from the default FullLoader yaml/pyyaml#347 -- Move constructor for object/apply to UnsafeConstructor
• Fix bug introduced in 5.1 where quoting went wrong on systems with sys.maxunicode <= 0xffff yaml/pyyaml#276 -- Fix logic for quoting special characters
• Other PRs: yaml/pyyaml#280 -- Update CHANGES for 5.1

5.1.2 (2019-07-30)

... (truncated)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 17956c3 release: v0.1.15
• 2c49d08 update ver to 0.1.15
• 362da47 refactor: format code
• 3342416 test: test latest windows
• 88fc081 improve: use tempfile.gettempdir() to find the correct tmp dir
• a38fbbd release: v0.1.14
• dedb853 update ver to 0.1.14
• 084cac0 fix dist script: there is no way to use setup.py inside repo dir. It will ins...
• 8608aac M .github/workflows/python-publish.yml
• 84bca33 release: v0.1.8
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from jinja2's releases.

3.0.1

• Changes: https://jinja.palletsprojects.com/en/3.0.x/changes/#version-3-0-1

Sourced from jinja2's changelog.

Version 3.0.1

Released 2021-05-18

• Update MarkupSafe dependency to >= 2.0. :pr:1418
• Mark top-level names as exported so type checking understands imports in user projects. :issue:1426
• Fix some types that weren't available in Python 3.6.0. :issue:1433
• The deprecation warning for unneeded autoescape and with_ extensions shows more relevant context. :issue:1429
• Fixed calling deprecated jinja2.Markup without an argument. Use markupsafe.Markup instead. :issue:1438
• Calling sync render for an async template uses asyncio.run on Python >= 3.7. This fixes a deprecation that Python 3.10 introduces. :issue:1443

Version 3.0.0

Released 2021-05-11

• Drop support for Python 2.7 and 3.5.
• Bump MarkupSafe dependency to >=1.1.
• Bump Babel optional dependency to >=2.1.
• Remove code that was marked deprecated.
• Add type hinting. :pr:1412
• Use :pep:451 API to load templates with :class:~loaders.PackageLoader. :issue:1168
• Fix a bug that caused imported macros to not have access to the current template's globals. :issue:688
• Add ability to ignore trim_blocks using +%}. :issue:1036
• Fix a bug that caused custom async-only filters to fail with constant input. :issue:1279
• Fix UndefinedError incorrectly being thrown on an undefined variable instead of Undefined being returned on NativeEnvironment on Python 3.10. :issue:1335
• Blocks can be marked as required. They must be overridden at some point, but not necessarily by the direct child. :issue:1147
• Deprecate the autoescape and with extensions, they are built-in to the compiler. :issue:1203
• The urlize filter recognizes mailto: links and takes extra_schemes (or env.policies["urlize.extra_schemes"]) to recognize other schemes. It tries to balance parentheses within a URL instead of ignoring trailing characters. The parsing in general has been updated to be more efficient and match more cases. URLs without a scheme are linked as https:// instead of http://. :issue:522, 827, 1172, :pr:1195
• Filters that get attributes, such as map and groupby, can

... (truncated)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)