Bump the pip group across 1 directory with 15 updates

[dependabot]

Bumps the pip group with 15 updates in the / directory:

Package	From	To
transformers	4.33.2	4.38.0
black	22.12.0	24.3.0
aiohttp	3.8.5	3.9.4
certifi	2023.7.22	2024.7.4
idna	3.4	3.7
jinja2	3.1.2	3.1.4
jupyter-lsp	2.2.0	2.2.2
jupyterlab	4.0.6	4.0.11
notebook	7.0.4	7.0.7
pyarrow	13.0.0	14.0.1
requests	2.31.0	2.32.2
tornado	6.3.3	6.4.1
tqdm	4.66.1	4.66.3
urllib3	2.0.5	2.2.2
zipp	3.17.0	3.19.1

Updates transformers from 4.33.2 to 4.38.0

Release notes

Sourced from transformers's releases.

v4.38: Gemma, Depth Anything, Stable LM; Static Cache, HF Quantizer, AQLM

New model additions

💎 Gemma 💎

Gemma is a new opensource Language Model series from Google AI that comes with a 2B and 7B variant. The release comes with the pre-trained and instruction fine-tuned versions and you can use them via AutoModelForCausalLM, GemmaForCausalLM or pipeline interface!

Read more about it in the Gemma release blogpost: https://hf.co/blog/gemma

from transformers import AutoTokenizer, AutoModelForCausalLM
tokenizer = AutoTokenizer.from_pretrained("google/gemma-2b")
model = AutoModelForCausalLM.from_pretrained("google/gemma-2b", device_map="auto", torch_dtype=torch.float16)
input_text = "Write me a poem about Machine Learning."
input_ids = tokenizer(input_text, return_tensors="pt").to("cuda")
outputs = model.generate(**input_ids)

You can use the model with Flash Attention, SDPA, Static cache and quantization API for further optimizations !

• Flash Attention 2

from transformers import AutoTokenizer, AutoModelForCausalLM
tokenizer = AutoTokenizer.from_pretrained("google/gemma-2b")
model = AutoModelForCausalLM.from_pretrained(
"google/gemma-2b", device_map="auto", torch_dtype=torch.float16, attn_implementation="flash_attention_2"
)
input_text = "Write me a poem about Machine Learning."
input_ids = tokenizer(input_text, return_tensors="pt").to("cuda")
outputs = model.generate(**input_ids)

• bitsandbytes-4bit

from transformers import AutoTokenizer, AutoModelForCausalLM
tokenizer = AutoTokenizer.from_pretrained("google/gemma-2b")
model = AutoModelForCausalLM.from_pretrained(
"google/gemma-2b", device_map="auto", load_in_4bit=True
)
</tr></table>

... (truncated)

Commits

• 08ab54a [ gemma] Adds support for Gemma 💎 (#29167)
• 2de9314 [Maskformer] safely get backbone config (#29166)
• 476957b 🚨 Llama: update rope scaling to match static cache changes (#29143)
• 7a4bec6 Release: 4.38.0
• ee3af60 Add support for fine-tuning CLIP-like models using contrastive-image-text exa...
• 0996a10 Revert low cpu mem tie weights (#29135)
• 15cfe38 [Core tokenization] add_dummy_prefix_space option to help with latest is...
• efdd436 FIX [PEFT / Trainer ] Handle better peft + quantized compiled models (#29...
• 5e95dca [cuda kernels] only compile them when initializing (#29133)
• a7755d2 Generate: unset GenerationConfig parameters do not raise warning (#29119)
• Additional commits viewable in compare view

Updates black from 22.12.0 to 24.3.0

Release notes

Sourced from black's releases.

24.3.0

Highlights

This release is a milestone: it fixes Black's first CVE security vulnerability. If you run Black on untrusted input, or if you habitually put thousands of leading tab characters in your docstrings, you are strongly encouraged to upgrade immediately to fix CVE-2024-21503.

This release also fixes a bug in Black's AST safety check that allowed Black to make incorrect changes to certain f-strings that are valid in Python 3.12 and higher.

Stable style

• Don't move comments along with delimiters, which could cause crashes (#4248)
• Strengthen AST safety check to catch more unsafe changes to strings. Previous versions of Black would incorrectly format the contents of certain unusual f-strings containing nested strings with the same quote type. Now, Black will crash on such strings until support for the new f-string syntax is implemented. (#4270)
• Fix a bug where line-ranges exceeding the last code line would not work as expected (#4273)

Performance

• Fix catastrophic performance on docstrings that contain large numbers of leading tab characters. This fixes CVE-2024-21503. (#4278)

Documentation

• Note what happens when --check is used with --quiet (#4236)

24.2.0

Stable style

• Fixed a bug where comments where mistakenly removed along with redundant parentheses (#4218)

Preview style

• Move the hug_parens_with_braces_and_square_brackets feature to the unstable style due to an outstanding crash and proposed formatting tweaks (#4198)
• Fixed a bug where base expressions caused inconsistent formatting of ** in tenary expression (#4154)
• Checking for newline before adding one on docstring that is almost at the line limit (#4185)
• Remove redundant parentheses in case statement if guards (#4214).

Configuration

... (truncated)

Changelog

Sourced from black's changelog.

24.3.0

Highlights

This release is a milestone: it fixes Black's first CVE security vulnerability. If you run Black on untrusted input, or if you habitually put thousands of leading tab characters in your docstrings, you are strongly encouraged to upgrade immediately to fix CVE-2024-21503.

This release also fixes a bug in Black's AST safety check that allowed Black to make incorrect changes to certain f-strings that are valid in Python 3.12 and higher.

Stable style

• Don't move comments along with delimiters, which could cause crashes (#4248)
• Strengthen AST safety check to catch more unsafe changes to strings. Previous versions of Black would incorrectly format the contents of certain unusual f-strings containing nested strings with the same quote type. Now, Black will crash on such strings until support for the new f-string syntax is implemented. (#4270)
• Fix a bug where line-ranges exceeding the last code line would not work as expected (#4273)

Performance

• Fix catastrophic performance on docstrings that contain large numbers of leading tab characters. This fixes CVE-2024-21503. (#4278)

Documentation

• Note what happens when --check is used with --quiet (#4236)

24.2.0

Stable style

• Fixed a bug where comments where mistakenly removed along with redundant parentheses (#4218)

Preview style

• Move the hug_parens_with_braces_and_square_brackets feature to the unstable style due to an outstanding crash and proposed formatting tweaks (#4198)
• Fixed a bug where base expressions caused inconsistent formatting of ** in tenary expression (#4154)
• Checking for newline before adding one on docstring that is almost at the line limit (#4185)
• Remove redundant parentheses in case statement if guards (#4214).

... (truncated)

Commits

• 552baf8 Prepare release 24.3.0 (#4279)
• f000936 Fix catastrophic performance in lines_with_leading_tabs_expanded() (#4278)
• 7b5a657 Fix --line-ranges behavior when ranges are at EOF (#4273)
• 1abcffc Use regex where we ignore case on windows (#4252)
• 719e674 Fix 4227: Improve documentation for --quiet --check (#4236)
• e5510af update plugin url for Thonny (#4259)
• 6af7d11 Fix AST safety check false negative (#4270)
• f03ee11 Ensure blib2to3.pygram is initialized before use (#4224)
• e4bfedb fix: Don't move comments while splitting delimiters (#4248)
• d0287e1 Make trailing comma logic more concise (#4202)
• Additional commits viewable in compare view

Updates aiohttp from 3.8.5 to 3.9.4

Release notes

Sourced from aiohttp's releases.

3.9.4

Bug fixes

• The asynchronous internals now set the underlying causes when assigning exceptions to the future objects -- by :user:webknjaz.

  Related issues and pull requests on GitHub: #8089.

• Treated values of Accept-Encoding header as case-insensitive when checking for gzip files -- by :user:steverep.

  Related issues and pull requests on GitHub: #8104.

• Improved the DNS resolution performance on cache hit -- by :user:bdraco.

  This is achieved by avoiding an :mod:asyncio task creation in this case.

  Related issues and pull requests on GitHub: #8163.

• Changed the type annotations to allow dict on :meth:aiohttp.MultipartWriter.append, :meth:aiohttp.MultipartWriter.append_json and :meth:aiohttp.MultipartWriter.append_form -- by :user:cakemanny

  Related issues and pull requests on GitHub: #7741.

• Ensure websocket transport is closed when client does not close it -- by :user:bdraco.

  The transport could remain open if the client did not close it. This change ensures the transport is closed when the client does not close it.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.9.4 (2024-04-11)

Bug fixes

• The asynchronous internals now set the underlying causes when assigning exceptions to the future objects -- by :user:webknjaz.

  Related issues and pull requests on GitHub: :issue:8089.

• Treated values of Accept-Encoding header as case-insensitive when checking for gzip files -- by :user:steverep.

  Related issues and pull requests on GitHub: :issue:8104.

• Improved the DNS resolution performance on cache hit -- by :user:bdraco.

  This is achieved by avoiding an :mod:asyncio task creation in this case.

  Related issues and pull requests on GitHub: :issue:8163.

• Changed the type annotations to allow dict on :meth:aiohttp.MultipartWriter.append, :meth:aiohttp.MultipartWriter.append_json and :meth:aiohttp.MultipartWriter.append_form -- by :user:cakemanny

  Related issues and pull requests on GitHub: :issue:7741.

• Ensure websocket transport is closed when client does not close it -- by :user:bdraco.

  The transport could remain open if the client did not close it. This change ensures the transport is closed when the client does not close it.

... (truncated)

Commits

• b3397c7 Release v3.9.4 (#8201)
• a7e240a [PR #8320/9ba9a4e5 backport][3.9] Fix Python parser to mark responses without...
• 2833552 Escape filenames and paths in HTML when generating index pages (#8317) (#8319)
• ed43040 [PR #8309/c29945a1 backport][3.9] Improve reliability of run_app test (#8315)
• ec2be05 [PR #8299/28d026eb backport][3.9] Create marker for internal tests (#8307)
• 292d961 [PR #8304/88c80c14 backport][3.9] Check for backports in CI (#8305)
• cebe526 Fix handling of multipart/form-data (#8280) (#8302)
• 270ae9c [PR #8297/d15f07cf backport][3.9] Upgrade to llhttp 9.2.1 (#8292) (#8298)
• bb23105 [PR #8283/54e13b0a backport][3.9] Fix blocking I/O in the event loop while pr...
• 3f79241 [PR #8286/28f1fd88 backport][3.9] docs: remove repetitive word in comment (#8...
• Additional commits viewable in compare view

Updates certifi from 2023.7.22 to 2024.7.4

Commits

• bd81538 2024.07.04 (#295)
• 06a2cbf Bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 (#294)
• 13bba02 Bump actions/checkout from 4.1.6 to 4.1.7 (#293)
• e8abcd0 Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#292)
• 124f4ad 2024.06.02 (#291)
• c2196ce --- (#290)
• fefdeec Bump actions/checkout from 4.1.4 to 4.1.5 (#289)
• 3c5fb15 Bump actions/download-artifact from 4.1.6 to 4.1.7 (#286)
• 4a9569a Bump actions/checkout from 4.1.2 to 4.1.4 (#287)
• 1fc8086 Bump peter-evans/create-pull-request from 6.0.4 to 6.0.5 (#288)
• Additional commits viewable in compare view

Updates idna from 3.4 to 3.7

Release notes

Sourced from idna's releases.

v3.7

What's Changed

• Fix issue where specially crafted inputs to encode() could take exceptionally long amount of time to process. [CVE-2024-3651]

Thanks to Guido Vranken for reporting the issue.

Full Changelog: kjd/idna@v3.6...v3.7

Changelog

Sourced from idna's changelog.

3.7 (2024-04-11) ++++++++++++++++

• Fix issue where specially crafted inputs to encode() could take exceptionally long amount of time to process. [CVE-2024-3651]

Thanks to Guido Vranken for reporting the issue.

3.6 (2023-11-25) ++++++++++++++++

• Fix regression to include tests in source distribution.

3.5 (2023-11-24) ++++++++++++++++

• Update to Unicode 15.1.0
• String codec name is now "idna2008" as overriding the system codec "idna" was not working.
• Fix typing error for codec encoding
• "setup.cfg" has been added for this release due to some downstream lack of adherence to PEP 517. Should be removed in a future release so please prepare accordingly.
• Removed reliance on a symlink for the "idna-data" tool to comport with PEP 517 and the Python Packaging User Guide for sdist archives.
• Added security reporting protocol for project

Thanks Jon Ribbens, Diogo Teles Sant'Anna, Wu Tingfeng for contributions to this release.

Commits

• 1d365e1 Release v3.7
• c1b3154 Merge pull request #172 from kjd/optimize-contextj
• 0394ec7 Merge branch 'master' into optimize-contextj
• cd58a23 Merge pull request #152 from elliotwutingfeng/dev
• 5beb28b More efficient resolution of joiner contexts
• 1b12148 Update ossf/scorecard-action to v2.3.1
• d516b87 Update Github actions/checkout to v4
• c095c75 Merge branch 'master' into dev
• 60a0a4c Fix typo in GitHub Actions workflow key
• 5918a0e Merge branch 'master' into dev
• Additional commits viewable in compare view

Updates jinja2 from 3.1.2 to 3.1.4

Release notes

Sourced from jinja2's releases.

3.1.4

This is the Jinja 3.1.4 security release, which fixes security issues and bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/Jinja2/3.1.4/ Changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4

• The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. GHSA-h75v-3vvj-5mfj

3.1.3

This is a fix release for the 3.1.x feature branch.

• Fix for GHSA-h5c8-rqwp-cp95. You are affected if you are using xmlattr and passing user input as attribute keys.
• Changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-3
• Milestone: https://github.com/pallets/jinja/milestone/15?closed=1

Changelog

Sourced from jinja2's changelog.

Version 3.1.4

Released 2024-05-05

• The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. :ghsa:h75v-3vvj-5mfj

Version 3.1.3

Released 2024-01-10

• Fix compiler error when checking if required blocks in parent templates are empty. :pr:1858
• xmlattr filter does not allow keys with spaces. :ghsa:h5c8-rqwp-cp95
• Make error messages stemming from invalid nesting of {% trans %} blocks more helpful. :pr:1918

Commits

• dd4a8b5 release version 3.1.4
• 0668239 Merge pull request from GHSA-h75v-3vvj-5mfj
• d655030 disallow invalid characters in keys to xmlattr filter
• a7863ba add ghsa links
• b5c98e7 start version 3.1.4
• da3a9f0 update project files (#1968)
• 0ee5eb4 satisfy formatter, linter, and strict mypy
• 20477c6 update project files (#5457)
• e491223 update pyyaml dev dependency
• 36f9885 fix pr link
• Additional commits viewable in compare view

Updates jupyter-lsp from 2.2.0 to 2.2.2

Changelog

Sourced from jupyter-lsp's changelog.

jupyter-lsp 2.2.2

• bug fixes:
  • address warning about renamed extension_points (#1035)
  • fix compatibility with jupyter server 1.x
  • fix an authentication-related security vulnerability (see the advisory for details)
• enhancements:
  • add authorization support (lsp resource, jupyter-server v2+ only) - this allows server operators for fine grained access control, e.g. in case if specific users (such as guest or read-only users) should not be allowed to access LSP; this is in addition to authentication fixes

@jupyter-lsp/jupyterlab-lsp 5.0.1

• bug fixes:
  • fix false “undefined name” in %%time and %%capture magics #1007 (thanks @​i-aki-y!)
  • fix completion items for paths and other long items being cut off #1025
  • workaround issue with markdown lost on edit #1016
  • fix latex/Greek letters insertion and other completions which do not match prefix (do not pre-filter completions from kernel) #1022
  • fix completions in Console #1023
  • fix customising priority after pre-setting it with overrides.json #1027
  • fix jump to definitions in a file inside root in Pyright on Windows #1024
  • fix typos in setting title and help message #999 and #1010
• maintenance:
  • fix bootstrap script #1021
  • bump axios from 1.2.1 to 1.6.2 #1019
  • bump @​babel/traverse from 7.22.5 to 7.23.4 #1020

jupyter-lsp 2.2.1

• bug fixes:
  • use APIHandler over JupyterHandler to get CORS OPTIONS #952 (thanks @​zhanba!)
  • use shutil.which to discover npm executable on Windows (thanks @​jameshurst!)
• maintenance:
  • resolve traitlets type warnings, lint, remove six #1015
  • use sys.executable in stdio tests #998

@jupyter-lsp/jupyterlab-lsp 5.0.0

• enhancements:
  • uses toast notifications instead of messages on status bar
  • diagnostics panel will be re-opened on reload
• maintenance:
  • support JupyterLab 4
  • use upstream @jupyterlab/lsp package
  • use camelCase convention in TypeScript/JavaScript code
  • use @codemirror/linter to show diagnostics
    • this comes with a different style of underlines and custom tooltips
• known issues/limitations:
  • configuration of language servers via JSON Settings Editor may result in a spurious warning due to a transitive clash with settings from the UI editor when using nested pattern (e.g. {pylsp: {flake8: {enabled: true}}}); the dotted pattern (e.g. {"pylsp.flake8.enabled": true}) does not lead to such problem.

... (truncated)

Commits

• See full diff in compare view

Updates jupyterlab from 4.0.6 to 4.0.11

Release notes

Sourced from jupyterlab's releases.

v4.0.11

4.0.11

(Full Changelog)

Security fixes

• Potential authentication and CSRF tokens leak in JupyterLab (GHSA-44cc-43rp-5947)
• SXSS in Markdown Preview (GHSA-4m77-cmpx-vjc4)

Bugs fixed

• Fixes focus indicator on input checkbox for Firefox #15612 (@​alden-ilao)

Documentation improvements

• Fix link to yarn docs in extension migration guide #15640 (@​krassowski)

Contributors to this release

(GitHub contributors page for this release)

@​brichet | @​fcollonval | @​github-actions | @​jtpio | @​jupyterlab-probot | @​krassowski | @​meeseeksmachine | @​misterfads | @​welcome

v4.0.10

4.0.10

(Full Changelog)

Bugs fixed

• Backport PR #15386: Improve scrolling to heading #15565 (@​krassowski)
• Workaround focus leaving input box on consecutive submissions #15479 (@​krassowski)
• Fix search coming back in notebook and editor #15443 (@​krassowski)
• Fix jupyter labextension watch --help #15542 (@​akx)
• Fix FormComponent showing error indicators in all fields when using a customValidate function #15464 (@​mmichilot)
• Fix Shift + L not working in stdin #15440 (@​krassowski)

Maintenance and upkeep improvements

• Backport PR #15499: Adopt ruff format #15564 (@​krassowski)
• Pin actions/labeler to v4 to fix failing CI action #15496 (@​krassowski)
• Fix URLs in debugger-extension #15462 (@​fcollonval)
• More robust galata/UI tests #15355 (@​krassowski)

Documentation improvements

• Backport PR #15499: Adopt ruff format #15564 (@​krassowski)

... (truncated)

Changelog

Sourced from jupyterlab's changelog.

4.0.11

4.0.10

(Full Changelog)

Bugs fixed

• Backport PR #15386: Improve scrolling to heading #15565 (@​krassowski)
• Workaround focus leaving input box on consecutive submissions #15479 (@​krassowski)
• Fix search coming back in notebook and editor #15443 (@​krassowski)
• Fix jupyter labextension watch --help #15542 (@​akx)
• Fix FormComponent showing error indicators in all fields when using a customValidate function #15464 (@​mmichilot)
• Fix Shift + L not working in stdin #15440 (@​krassowski)

Maintenance and upkeep improvements

• Backport PR #15499: Adopt ruff format #15564 (@​krassowski)
• Pin actions/labeler to v4 to fix failing CI action #15496 (@​krassowski)
• Fix URLs in debugger-extension #15462 (@​fcollonval)
• More robust galata/UI tests #15355 (@​krassowski)

Documentation improvements

• Backport PR #15499: Adopt ruff format #15564 (@​krassowski)

Contributors to this release

(GitHub contributors page for this release)

@​afshin | @​brichet | @​davidbrochart | @​echarles | @​fcollonval | @​g547315 | @​gabalafou | @​GabrielaVives | @​github-actions | @​j264415 | @​jtpio | @​jupyterlab-probot | @​krassowski | @​lumberbot-app | @​meeseeksmachine | @​parmentelat | @​tonyfast | @​welcome | @​Wh1isper

4.0.9

(Full Changelog)

Bugs fixed

• Improve cell toolbar tracker #15314 (@​fcollonval)
• Do not update filebrowser breadcrumbs when not needed #15387 (@​krassowski)
• Don't show default value for objects in Settings Editor #15380 (@​firai)
• Fix highlighting search in an out-of-viewport cell #15376 (@​fcollonval)
• Fix overreactive scrolling to next cell after Shift + Enter #15288 (@​krassowski)
• Fix missing default property breaking codemirror overrides.json #15346 (@​LJMP)
• Fix update button in extension manager #15331 (@​nbowditch-einblick)
• Fix scrolling when dragging files in the file browser #15318 (@​krassowski)

... (truncated)

Commits

• 882dd81 [ci skip] Publish 4.0.11
• 1ef7a4f Merge pull request from GHSA-44cc-43rp-5947
• 0a75101 Fix CI: lint
• dda0033 Merge pull request from GHSA-4m77-cmpx-vjc4
• 0708330 Backport PR #15612: Fixes focus indicator on input checkbox for Firefox (#15653)
• edb23eb Backport PR #15640: Fix link to yarn docs in extension migration guide (#15644)
• 40e8e47 [ci skip] Publish 4.0.10
• b9bc300 Backport PR #15386: Improve scrolling to heading (#15565)
• 3ce0331 Backport PR #15499: Adopt ruff format (#15564)
• dd68b9c Backport PR #15443: Fix search coming back in notebook and editor (#15562)
• Additional commits viewable in compare view

Updates notebook from 7.0.4 to 7.0.7

Release notes

Sourced from notebook's releases.

v7.0.7

7.0.7

(Full Changelog)

Enhancements made

• Update to JupyterLab 4.0.11 #7215 (@​krassowski)

Maintenance and upkeep improvements

• Update ruff config and typing #7145 (@​blink1073)
• Clean up lint handling #7142 (@​blink1073)
• Adopt ruff format #7132 (@​blink1073)
• [7.0.x] Install stable JupyterLab 4.0 in the releaser hook #7183 (@​jtpio)
• Update publish-release workflow for PyPI trusted publisher #7176 (@​jtpio)

Contributors to this release

(GitHub contributors page for this release)

@​brichet | @​d5423197 | @​github-actions | @​jtpio | @​krassowski | @​meeseeksmachine

v7.0.6

7.0.6

(Full Changelog)

Bugs fixed

• Updated fav-icon Base URL from JupyterLab PageConfig. #7109 (@​jayeshsingh9767)

Maintenance and upkeep improvements

• Fix typings #7110 (@​jtpio)
• Bump postcss from 8.4.27 to 8.4.31 #7089 (@​dependabot)

Contributors to this release

(GitHub contributors page for this release)

@​dependabot | @​github-actions | @​jayeshsingh9767 | @​jtpio

v7.0.5

... (truncated)

Changelog

Sourced from notebook's changelog.

7.0.7

(Full Changelog)

Enhancements made

• Update to JupyterLab 4.0.11 #7215 (@​krassowski)

Maintenance and upkeep improvements

• Update ruff config and typing #7145 (@​blink1073)
• Clean up lint handling #7142 (@​blink1073)
• Adopt ruff format #7132 (@​blink1073)
• [7.0.x] Install stable JupyterLab 4.0 in the releaser hook #7183 (@​jtpio)
• Update publish-release workflow for PyPI trusted publisher #7176 (@​jtpio)

Contributors to this release

(GitHub contributors page for this release)

@​brichet | @​d5423197 | @​github-actions | @​jtpio | @​krassowski | @​meeseeksmachine

7.0.6

(Full Changelog)

Bugs fixed

• Updated fav-icon Base URL from JupyterLab PageConfig. #7109 (@​jayeshsingh9767)

Maintenance and upkeep improvements

• Fix typings #7110 (@​jtpio)
• Bump postcss from 8.4.27 to 8.4.31 #7089 (@​dependabot)

Contributors to this release

(GitHub contributors page for this release)

@​dependabot | @​github-actions | @​jayeshsingh9767 | @​jtpio

7.0.5

(Full Changelog)

Enhancements made

• Update to JupyterLab 4.0.7 #7103 (@​jtpio)

... (truncated)

Commits

...

Description has been truncated