Skip to content

Commit 5dad505

Browse files
dependabot[bot]monty-botacabarbaye
authored
Bump jinja2 from 2.11.3 to 3.0.3 (#32)
Bumps [jinja2](https://github.com/pallets/jinja) from 2.11.3 to 3.0.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pallets/jinja/releases">jinja2's releases</a>.</em></p> <blockquote> <h2>3.0.3</h2> <ul> <li>Changes: <a href="https://jinja.palletsprojects.com/en/3.0.x/changes/#version-3-0-3">https://jinja.palletsprojects.com/en/3.0.x/changes/#version-3-0-3</a></li> </ul> <h2>What's Changed</h2> <ul> <li>update requirements by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1524">pallets/jinja#1524</a></li> <li>test Python 3.10 by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1530">pallets/jinja#1530</a></li> <li>test Python 3.11 by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1531">pallets/jinja#1531</a></li> <li>Tests: Adapt expected traceback regexes for Python 3.11.0a1 by <a href="https://github.com/hroncok"><code>@​hroncok</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1527">pallets/jinja#1527</a></li> <li>simplify CodeType rewriting by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1536">pallets/jinja#1536</a></li> <li>native: keep same behavior on Python 3.10 by <a href="https://github.com/mkrizek"><code>@​mkrizek</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1537">pallets/jinja#1537</a></li> <li>Reduce async overhead due to auto_await by <a href="https://github.com/mohd-akram"><code>@​mohd-akram</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1516">pallets/jinja#1516</a></li> <li>Use <code>object.__hash__</code> for <code>Node.__hash__</code> by <a href="https://github.com/klette"><code>@​klette</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1522">pallets/jinja#1522</a></li> <li>Fix typos by <a href="https://github.com/kianmeng"><code>@​kianmeng</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1509">pallets/jinja#1509</a></li> <li>rewrite Template class doc by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1538">pallets/jinja#1538</a></li> <li>remove reference to macro.defaults by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1539">pallets/jinja#1539</a></li> <li>rewrite docs about extending template objects by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1540">pallets/jinja#1540</a></li> <li>document chained pow order by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1541">pallets/jinja#1541</a></li> <li>PackageLoader works with single module file by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1542">pallets/jinja#1542</a></li> <li>release version 3.0.3 by <a href="https://github.com/davidism"><code>@​davidism</code></a> in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1543">pallets/jinja#1543</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/mohd-akram"><code>@​mohd-akram</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1516">pallets/jinja#1516</a></li> <li><a href="https://github.com/klette"><code>@​klette</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1522">pallets/jinja#1522</a></li> <li><a href="https://github.com/kianmeng"><code>@​kianmeng</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/pallets/jinja/pull/1509">pallets/jinja#1509</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/pallets/jinja/compare/3.0.2...3.0.3">https://github.com/pallets/jinja/compare/3.0.2...3.0.3</a></p> <h2>3.0.2</h2> <ul> <li>Changes: <a href="https://jinja.palletsprojects.com/en/3.0.x/changes/#version-3-0-2">https://jinja.palletsprojects.com/en/3.0.x/changes/#version-3-0-2</a></li> </ul> <h2>3.0.1</h2> <ul> <li>Changes: <a href="https://jinja.palletsprojects.com/en/3.0.x/changes/#version-3-0-1">https://jinja.palletsprojects.com/en/3.0.x/changes/#version-3-0-1</a></li> </ul> <h2>3.0.0</h2> <p>New major versions of all the core Pallets libraries, including Jinja 3.0, have been released! 🎉</p> <ul> <li>Read the announcement on our blog: <a href="https://palletsprojects.com/blog/flask-2-0-released/">https://palletsprojects.com/blog/flask-2-0-released/</a></li> <li>Read the full list of changes: <a href="https://jinja.palletsprojects.com/changes/#version-3-0-0">https://jinja.palletsprojects.com/changes/#version-3-0-0</a></li> <li>Retweet the announcement on Twitter: <a href="https://twitter.com/PalletsTeam/status/1392266507296514048">https://twitter.com/PalletsTeam/status/1392266507296514048</a></li> <li>Follow our blog, Twitter, or GitHub to see future announcements.</li> </ul> <p>This represents a significant amount of work, and there are quite a few changes. Be sure to carefully read the changelog, and use tools such as pip-compile and Dependabot to pin your dependencies and control your updates.</p> <h2>3.0.0rc2</h2> <p>Fixes an issue with the deprecated <code>Markup</code> subclass, <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1401">#1401</a>.</p> <ul> <li>Changes: <a href="https://jinja.palletsprojects.com/en/master/changes/#version-3-0-0">https://jinja.palletsprojects.com/en/master/changes/#version-3-0-0</a></li> </ul> <h2>3.0.0rc1</h2> <ul> <li>Changes: <a href="https://jinja.palletsprojects.com/en/master/changes/#version-3-0-0">https://jinja.palletsprojects.com/en/master/changes/#version-3-0-0</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pallets/jinja/blob/main/CHANGES.rst">jinja2's changelog</a>.</em></p> <blockquote> <h2>Version 3.0.3</h2> <p>Released 2021-11-09</p> <ul> <li>Fix traceback rewriting internals for Python 3.10 and 3.11. :issue:<code>1535</code></li> <li>Fix how the native environment treats leading and trailing spaces when parsing values on Python 3.10. :pr:<code>1537</code></li> <li>Improve async performance by avoiding checks for common types. :issue:<code>1514</code></li> <li>Revert change to <code>hash(Node)</code> behavior. Nodes are hashed by id again :issue:<code>1521</code></li> <li><code>PackageLoader</code> works when the package is a single module file. :issue:<code>1512</code></li> </ul> <h2>Version 3.0.2</h2> <p>Released 2021-10-04</p> <ul> <li>Fix a loop scoping bug that caused assignments in nested loops to still be referenced outside of it. :issue:<code>1427</code></li> <li>Make <code>compile_templates</code> deterministic for filter and import names. :issue:<code>1452, 1453</code></li> <li>Revert an unintended change that caused <code>Undefined</code> to act like <code>StrictUndefined</code> for the <code>in</code> operator. :issue:<code>1448</code></li> <li>Imported macros have access to the current template globals in async environments. :issue:<code>1494</code></li> <li><code>PackageLoader</code> will not include a current directory (.) path segment. This allows loading templates from the root of a zip import. :issue:<code>1467</code></li> </ul> <h2>Version 3.0.1</h2> <p>Released 2021-05-18</p> <ul> <li>Update MarkupSafe dependency to &gt;= 2.0. :pr:<code>1418</code></li> <li>Mark top-level names as exported so type checking understands imports in user projects. :issue:<code>1426</code></li> <li>Fix some types that weren't available in Python 3.6.0. :issue:<code>1433</code></li> <li>The deprecation warning for unneeded <code>autoescape</code> and <code>with_</code> extensions shows more relevant context. :issue:<code>1429</code></li> <li>Fixed calling deprecated <code>jinja2.Markup</code> without an argument. Use <code>markupsafe.Markup</code> instead. :issue:<code>1438</code></li> <li>Calling sync <code>render</code> for an async template uses <code>asyncio.run</code> on Python &gt;= 3.7. This fixes a deprecation that Python 3.10</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pallets/jinja/commit/2a48dd898d72f1a119ee923996e70aa43da04ea4"><code>2a48dd8</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1543">#1543</a> from pallets/release-3.0.3</li> <li><a href="https://github.com/pallets/jinja/commit/ce1a539a69173993566fb09f721e8f4a64e141b3"><code>ce1a539</code></a> release version 3.0.3</li> <li><a href="https://github.com/pallets/jinja/commit/199b6d5ceb6f8369c21d04ce52c995bdb0005c2a"><code>199b6d5</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1542">#1542</a> from pallets/package-loader-file</li> <li><a href="https://github.com/pallets/jinja/commit/eec0db8642b25691867890f14fc6c9ca04c8a8c9"><code>eec0db8</code></a> PackageLoader works with single module file</li> <li><a href="https://github.com/pallets/jinja/commit/46f3a68183c2eca8865195f3988f9baf4ec551eb"><code>46f3a68</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1541">#1541</a> from pallets/docs-pow-order</li> <li><a href="https://github.com/pallets/jinja/commit/0d1999067ba6a08389a309ce258eaf17fc3cc749"><code>0d19990</code></a> document chained pow order</li> <li><a href="https://github.com/pallets/jinja/commit/99daa2a8dc4d44c3033d7d9afc1f1ec1380cdc94"><code>99daa2a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1540">#1540</a> from pallets/docs-macro-defaults</li> <li><a href="https://github.com/pallets/jinja/commit/a6162daeca116e81ca8a390ed36b3c67aea33671"><code>a6162da</code></a> rewrite docs about extending template objects</li> <li><a href="https://github.com/pallets/jinja/commit/cab554566610fc9a095a51ef69de4dc82eee1acc"><code>cab5545</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pallets/jinja/issues/1539">#1539</a> from pallets/docs-macro-defaults</li> <li><a href="https://github.com/pallets/jinja/commit/369ff03e090668b2366a7222a22def078bec7cb8"><code>369ff03</code></a> remove reference to macro.defaults</li> <li>Additional commits viewable in <a href="https://github.com/pallets/jinja/compare/2.11.3...3.0.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jinja2&package-manager=pip&previous-version=2.11.3&new-version=3.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Monty Bot <monty-bot@arm.com> Co-authored-by: Adrien CABARBAYE <adrien.cabarbaye@arm.com>
1 parent aba09c1 commit 5dad505

2 files changed

Lines changed: 2 additions & 3 deletions

File tree

news/202202230717.bugfix

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1 @@
1+
Dependency upgrade: jinja2-3.0.3

setup.py

Lines changed: 1 addition & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -74,10 +74,8 @@
7474
"license-expression",
7575
"wcmatch",
7676
"jellyfish",
77-
"jinja2==2.11.3",
77+
"jinja2>=3,<4",
7878
"dataclasses; python_version<'3.7'",
79-
# FIXME fixing markupsafe to solve https://github.com/pallets/markupsafe/issues/284 until jinja is upgraded
80-
"markupsafe==2.0.1",
8179
],
8280
license="Apache 2.0",
8381
long_description_content_type="text/markdown",

0 commit comments

Comments
 (0)