Bump the dev-dependencies group with 3 updates

[dependabot]

Bumps the dev-dependencies group with 3 updates: jupytext, myst-nb and sphinxcontrib-mermaid.

Updates jupytext from 1.19.1 to 1.19.3

Release notes

Sourced from jupytext's releases.

Version 1.19.3

Fixed

• The Jupytext CLI issues a warning when a notebook is not trusted. Also, trust is preserved when empty outputs are added (follow-up on #1505)

Changed

• The dependabot config has been updated to correctly bump extension packages, now allowing only production updates and ignoring dev dependencies (#1532). Thanks to Mahendra Paipuri for this PR!
• Removed deprecated stylelint packages (stylelint-config-prettier and stylelint-prettier) from the JupyterLab extension dependencies (#1530)
• We have removed Python 3.9 testing from the CI (Python 3.9 reached EOL in October 2025)

Version 1.19.2

Fixed

• Trusted notebooks remain trusted after jupytext --sync (#1505)
• We have fixed the homepage link in package.json. Thanks to Michał Krassowski for making this PR (#1494)
• Thanks to Brigitta Sipőcz for fixing a broken link in our CLI (#1428)
• The --quiet flag now suppresses the creating missing directory warning when writing to a path that includes a prefix (#1533)

Changed

• The CI workflow has been restructured to maximize parallelization. All test suites (pip, conda, UI) and the build step now run concurrently after pre-commit checks, instead of sequentially, reducing CI times (#1527)
• We have skipped the tests that involve jupyterfs on Python 3.12+ as they started failing on the CI with no obvious way to fix them (#1509)
• We have changed the configuration of Dependabot to get grouped dependency updates for our JupyterLab extension.
• We have merged a series of Dependabot security updates: #1516, #1517, #1519, #1520, #1522, #1524

Changelog

Sourced from jupytext's changelog.

1.19.3 (2026-05-17)

Fixed

• The Jupytext CLI issues a warning when a notebook is not trusted. Also, trust is preserved when empty outputs are added (follow-up on #1505)

Changed

• The dependabot config has been updated to correctly bump extension packages, now allowing only production updates and ignoring dev dependencies (#1532). Thanks to Mahendra Paipuri for this PR!
• Removed deprecated stylelint packages (stylelint-config-prettier and stylelint-prettier) from the JupyterLab extension dependencies (#1530)
• We have removed Python 3.9 testing from the CI (Python 3.9 reached EOL in October 2025)

1.19.2 (2026-05-10)

Fixed

• Trusted notebooks remain trusted after jupytext --sync (#1505)
• We have fixed the homepage link in package.json. Thanks to Michał Krassowski for making this PR (#1494)
• Thanks to Brigitta Sipőcz for fixing a broken link in our CLI (#1428)
• The --quiet flag now suppresses the creating missing directory warning when writing to a path that includes a prefix (#1533)

Changed

• The CI workflow has been restructured to maximize parallelization. All test suites (pip, conda, UI) and the build step now run concurrently after pre-commit checks, instead of sequentially, reducing CI times (#1527)
• We have skipped the tests that involve jupyterfs on Python 3.12+ as they started failing on the CI with no obvious way to fix them (#1509)
• We have changed the configuration of Dependabot to get grouped dependency updates for our JupyterLab extension.
• We have merged a series of Dependabot security updates: #1516, #1517, #1519, #1520, #1522, #1524

Commits

• 48fdfd8 Fix: Adding cells with no outputs preserves trust status (#1531)
• 4706e65 chore: Update dependabot config (#1532)
• 2ec5404 build (deps): Remove deprecated stylelint packages (#1530)
• 309f97f Version 1.19.2 (#1529)
• e4dded4 build(deps-dev): bump typescript from 5.9.3 to 6.0.3 in /jupyterlab/packages/...
• 2c262e5 Fix: --quiet also suppresses warning for directory creation (#1526)
• 0bfcec1 build(deps): bump fast-uri from 3.1.0 to 3.1.2 in /jupyterlab (#1524)
• 611e2c0 Explicitly close NotebookNotary signature store (#1528)
• 70b1f20 All tests run after coverage tests have passed (#1527)
• 399e934 Close SQLite database connections of Jupytext-created notaries
• Additional commits viewable in compare view

Updates myst-nb from 1.3.0 to 1.4.0

Release notes

Sourced from myst-nb's releases.

v1.4.0

What's Changed

• MAINT: post JB2 release fix by @​bsipocz in executablebooks/MyST-NB#700
• Fix dead link in error directive message by @​crespum in executablebooks/MyST-NB#703
• Improve theme integration by @​flying-sheep in executablebooks/MyST-NB#693
• Update infrastructure for new pythons and prep for latest sphinx by @​choldgraf in executablebooks/MyST-NB#706
• Remove upper pin for Sphinx (and adding newer sphinx and python version to CI testing) by @​bsipocz in executablebooks/MyST-NB#704
• MAINT: default branch got renamed by @​bsipocz in executablebooks/MyST-NB#711

New Contributors

• @​crespum made their first contribution in executablebooks/MyST-NB#703

Full Changelog: executablebooks/MyST-NB@v1.3.0...v1.4.0

Changelog

Sourced from myst-nb's changelog.

v1.4.0 - 2026-03-02

(full changelog)

What's Changed

• MAINT: post JB2 release fix by @​bsipocz in executablebooks/MyST-NB#700
• Fix dead link in error directive message by @​crespum in executablebooks/MyST-NB#703
• Improve theme integration by @​flying-sheep in executablebooks/MyST-NB#693
• Update infrastructure for new pythons and prep for latest sphinx by @​choldgraf in executablebooks/MyST-NB#706
• Remove upper pin for Sphinx (and adding newer sphinx and python version to CI testing) by @​bsipocz in executablebooks/MyST-NB#704
• MAINT: default branch got renamed by @​bsipocz in executablebooks/MyST-NB#711

New Contributors

• @​crespum made their first contribution in executablebooks/MyST-NB#703

Commits

• 7a32f74 Preparing for release v1.4.0
• 6199097 MAINT: default branch got renamed (#711)
• a0d0275 CI: testing python 3.14 and sphinx9 and docutils 0.22 (#704)
• 68352d6 [pre-commit.ci] pre-commit autoupdate (#710)
• d7012c4 [pre-commit.ci] pre-commit autoupdate (#708)
• 4f4096d Update infrastructure for new pythons and prep for latest sphinx (#706)
• 5e06ea0 [pre-commit.ci] pre-commit autoupdate (#707)
• 49e01eb Improve theme integration (#693)
• 531af65 Fix dead link (#703)
• 8f5a1e7 [pre-commit.ci] pre-commit autoupdate (#702)
• Additional commits viewable in compare view

Updates sphinxcontrib-mermaid from 2.0.1 to 2.0.2

Changelog

Sourced from sphinxcontrib-mermaid's changelog.

Changelog

Unreleased

• Add mermaid_dark_theme and mermaid_light_theme config options for configurable theme switching

Commits

• 19be468 Merge pull request #240 from timkpaine/tkp/hatch
• e1f9ecc Switch to hatchling
• 42aa20a Merge pull request #239 from timkpaine/tkp/202
• 2db5b55 bump to 2.0.2
• 25c7ef7 Merge pull request #237 from kartben/local_paths
• e98c6f8 increase test coverage for _use_local options
• 1422b45 Resolve local Mermaid/ELK/ZenUML/D3 JS paths under html_static_path
• d6d874c Merge pull request #236 from jensens/configurable-theme
• bce5976 Document mermaid_dark_theme and mermaid_light_theme config options
• 12bb2ac Add mermaid_dark_theme and mermaid_light_theme config options
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 75.17%. Comparing base (e386ea5) to head (a213d5d).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #940   +/-   ##
=======================================
  Coverage   75.17%   75.17%           
=======================================
  Files          70       70           
  Lines        9024     9024           
=======================================
  Hits         6784     6784           
  Misses       2240     2240           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.