You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Ensure nested elements inside inline comments are properly unescaped (#1571).
Make the docs build successfully with mkdocstrings-python 2.0 (#1575).
Fix infinite loop when multiple bogus or unclosed HTML comments appear in input (#1578).
Fix another infinite loop when handling bad comments (#1586).
Release 3.10.0
Changed
Officially support Python 3.14 and PyPy 3.11 and drop support for Python 3.9
and PyPy 3.9.
Fixed
Fix an HTML comment parsing case in some Python versions that can cause an
infinite loop (#1554).
Revert the default behavior of USE_DEFINITION_ORDER (to True). The new
behavior introduced in 3.9.0 is experimental and results are inconsistent.
It should not have been made the default behavior (#1561).
Release 3.9.0
Changed
Footnotes are now ordered by the occurrence of their references in the
document. A new configuration option for the footnotes extension,
USE_DEFINITION_ORDER, has been added to support restoring the previous
behavior of ordering footnotes by the occurrence of definitions (#1367).
Fixed
Ensure inline processing iterates through elements in document order (#1546).
Fix handling of incomplete HTML tags in code spans in Python 3.14 (#1547).
Release 3.8.2
Fixed
Fix codecs deprecation in Python 3.14.
Fix issue with unclosed comment parsing in Python 3.14.
Fix issue with unclosed declarations in Python 3.14.
Fix issue with unclosed HTML tag <foo and Python 3.14.
Ensure nested elements inside inline comments are properly unescaped (#1571).
Make the docs build successfully with mkdocstrings-python 2.0 (#1575).
Fix infinite loop when multiple bogus or unclosed HTML comments appear in input (#1578).
Fix another infinite loop when handling bad comments (#1586).
[3.10.0] - 2025-11-03
Changed
Officially support Python 3.14 and PyPy 3.11 and drop support for Python 3.9
and PyPy 3.9.
Fixed
Fix an HTML comment parsing case in some Python versions that can cause an
infinite loop (#1554).
Revert the default behavior of USE_DEFINITION_ORDER (to True). The new
behavior introduced in 3.9.0 is experimental and results are inconsistent.
It should not have been made the default behavior (#1561).
[3.9.0] - 2025-09-04
Changed
Footnotes are now ordered by the occurrence of their references in the
document. A new configuration option for the footnotes extension,
USE_DEFINITION_ORDER, has been added to support restoring the previous
behavior of ordering footnotes by the occurrence of definitions (#1367).
Fixed
Ensure inline processing iterates through elements in document order (#1546).
Fix handling of incomplete HTML tags in code spans in Python 3.14 (#1547).
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
The reason will be displayed to describe this comment to others. Learn more.
Pull Request Overview
This pull request cannot be merged because it attempts to bump the markdown dependency to a version (3.10.2) that does not exist on PyPI. This will cause the build process to fail immediately during dependency installation. Furthermore, the upgrade path for the markdown package involves dropping support for Python 3.9 (starting in version 3.10.0), which may break compatibility with the project's current runtime or CI environment. Codacy identifies the PR as up to standards, but this does not account for the invalid versioning and lack of regression testing for rendering output.
About this PR
Markdown 3.10.0 officially dropped support for Python 3.9. If this project's runtime or CI environment relies on Python 3.9, this upgrade will break the build regardless of the version being valid.
No verification or smoke tests were included in the diff to ensure that the rendering engine remains compatible with existing content, particularly regarding footnotes or complex HTML in markdown.
Test suggestions
Verify Markdown rendering of existing documentation to ensure no regressions in output formatting.
Validate that the environment running this package is Python 3.10 or higher, as support for Python 3.9 was dropped in Markdown 3.10.0.
Check footnote rendering consistency if used, given the changes and subsequent reverts to USE_DEFINITION_ORDER logic in versions 3.9 and 3.10.
Prompt proposal for missing tests
Consider implementing these tests if applicable:
1. Verify Markdown rendering of existing documentation to ensure no regressions in output formatting.
2. Validate that the environment running this package is Python 3.10 or higher, as support for Python 3.9 was dropped in Markdown 3.10.0.
3. Check footnote rendering consistency if used, given the changes and subsequent reverts to `USE_DEFINITION_ORDER` logic in versions 3.9 and 3.10.
The reason will be displayed to describe this comment to others. Learn more.
🔴 HIGH RISK
The version 3.10.2 for the markdown package does not exist on PyPI. The current latest stable release is 3.7. Using a non-existent version will cause the build process to fail.
Try running the following prompt in your coding agent:
Search for the latest version of the 'markdown' package on PyPI and update requirements.txt with the correct version number.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dependenciesPull requests that update a dependency filepythonPull requests that update python code
0 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
dependabot
Bot
added
dependencies
![codacy-production[bot]](https://avatars.githubusercontent.com/in/56611?s=60&v=4){kind=small}
Bumps markdown from 3.7 to 3.10.2.
Release notes
Sourced from markdown's releases.
... (truncated)
Changelog
Sourced from markdown's changelog.
... (truncated)
Commits
e7a0efbBump version to 3.10.26301833Document HTML sanitation policy7f29f1aMore reliable fix for</c438647Fix regression of special commentse5fa5b8Bump version to 3.10.1f925349More HTML fixes9933a0aRevert "Allow reference links with backticks"07dfa4eAllow reference links with backticksfb6b27aFix infinite loop when text contains multiple unclosed comments89112c2Make the docs build successfully with mkdocstrings-python 2.0Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)