Bump the direct-deps group with 7 updates

[dependabot]

Bumps the direct-deps group with 7 updates:

Package	From	To
jupyterlab	4.5.3	4.5.5
ipykernel	7.1.0	7.2.0
certifi	2026.1.4	2026.2.25
ipyvue	1.11.3	1.12.0
parso	0.8.5	0.8.6
pillow	12.1.0	12.1.1
wcwidth	0.5.3	0.6.0

Updates jupyterlab from 4.5.3 to 4.5.5

Release notes

Sourced from jupyterlab's releases.

v4.5.5

4.5.5

(Full Changelog)

Bugs fixed

• Fix theme settings broken in non-English locales #18530 (@​apoorvdarshan)
• Fix comms subshell resource management on disposal and when changing settings #18531 (@​krassowski)
• Upgrade @codemirror/view, fixing slow selection when line wrapping is enabled #18479 (@​krassowski)
• Only turn off overflow anchor when windowing is active #18503 (@​jasongrout)
• Fix table of contents navigation for Markdown files #18411 (@​itsmevichu)

Maintenance and upkeep improvements

• Update to marked 17.0.2 and mermaid 11.12.3 #18532 (@​bollwyvl, @​krassowski)

Contributors to this release

The following people contributed discussions, new ideas, code and documentation contributions, and review. See our definition of contributors.

(GitHub contributors page for this release)

@​apoorvdarshan (activity) | @​bollwyvl (activity) | @​itsmevichu (activity) | @​jasongrout (activity) | @​krassowski (activity)

v4.5.4

4.5.4

(Full Changelog)

Bugs fixed

• Avoid using system clipboard in Notebook widget #18474 (@​brichet)
• Update CodeMirror versions, fixing a few selection issues #18466 (@​krassowski)
• Fix debugger variable panel to render value 0 properly #18464 (@​itsmevichu)
• Consider both the content type and pattern match in DocumentRegistry.getFileTypeForModel() #18409 (@​krassowski)
• false in saveAs to avoid fetching file body #18379 (@​DeborahOlaboye)

Maintenance and upkeep improvements

• Bump Lumino packages to the 2026.2.5 release, fixing iframe resizing #18440 (@​jasongrout)

Documentation improvements

• Clarify notebook and cell metadata API changes in JupyterLab 4 #18304 (@​Krish-876)

... (truncated)

Commits

• 72d29f4 [ci skip] Publish 4.5.5
• 4a223c0 Backport PR #18530 on branch 4.5.x (Fix theme settings broken in non-English ...
• 2d54b65 Backport PR #18531 on branch 4.5.x (Fix comms subshell resource management on...
• 5f01903 Update to marked 17.0.2 and mermaid 11.12.3 (#18532)
• 1fa6809 Backport PR #18479 on branch 4.5.x (Upgrade @​codemirror/view, fixing slow sel...
• 277f814 Backport PR #18503 on branch 4.5.x (Only turn off overflow anchor when window...
• b824b96 Backport PR #18411 on branch 4.5.x (Fix table of contents navigation for Mark...
• 2ecc1ee [ci skip] Publish 4.5.4
• 19f81fc Backport PR #18474 on branch 4.5.x (Avoid using system clipboard in Notebook ...
• b82e6d7 Backport PR #18466 on branch 4.5.x (Update CodeMirror versions, fixing a few ...
• Additional commits viewable in compare view

Updates ipykernel from 7.1.0 to 7.2.0

Release notes

Sourced from ipykernel's releases.

v7.2.0

7.2.0

(Full Changelog)

New features added

• Added kernel_protocol_version to kernelspec #1483 (@​JohanMabille, @​ianthomas23)
• Replaced PUB socket with XPUB socket #1482 (@​JohanMabille, @​SylvainCorlay, @​ccordoba12, @​ianthomas23, @​minrk)

Enhancements made

• Made IOPubThread constructor backward compatible #1492 (@​JohanMabille, @​SylvainCorlay, @​ianthomas23, @​minrk)
• Advertizes kernel protocol 5.5 #1488 (@​JohanMabille, @​ianthomas23)
• Upgrade to jupyter_client 8.8.0 #1487 (@​JohanMabille, @​ianthomas23)
• Implement kernel-side callstack filtering for internal frames #1481 (@​arjxn-py, @​JohanMabille, @​ianthomas23)

Bugs fixed

• add close event for wx timer app in loop_wx #1478 (@​newville, @​ianthomas23)

Maintenance and upkeep improvements

• Temporarily revert "Test changing base method to async after (#1464)" #1493 (@​ianthomas23, @​JohanMabille)
• Update pytest requirement from <9,>=7.0 to >=7.0,<10 in the actions group across 1 directory #1489 (@​JohanMabille)
• Removed spyder downstream tests #1486 (@​JohanMabille, @​ianthomas23)
• Bump scientific-python/upload-nightly-action from 0.6.2 to 0.6.3 in the actions group #1484 (@​JohanMabille)
• Fix linting errors #1480 (@​ianthomas23)
• Bump actions/checkout from 5 to 6 in the actions group #1479 (@​ianthomas23)
• chore: update pre-commit hooks #1472 (@​ianthomas23)
• chore: update pre-commit hooks #1467 (@​JohanMabille)
• Test changing base method to async after #1295 #1464 (@​Carreau, @​ianthomas23)

Contributors to this release

The following people contributed discussions, new ideas, code and documentation contributions, and review. See our definition of contributors.

(GitHub contributors page for this release)

@​arjxn-py (activity) | @​Carreau (activity) | @​ccordoba12 (activity) | @​ianthomas23 (activity) | @​JohanMabille (activity) | @​minrk (activity) | @​newville (activity) | @​SylvainCorlay (activity)

v7.2.0a1

7.2.0a1

(Full Changelog)

... (truncated)

Changelog

Sourced from ipykernel's changelog.

7.2.0

(Full Changelog)

New features added

• Added kernel_protocol_version to kernelspec #1483 (@​JohanMabille, @​ianthomas23)
• Replaced PUB socket with XPUB socket #1482 (@​JohanMabille, @​SylvainCorlay, @​ccordoba12, @​ianthomas23, @​minrk)

Enhancements made

• Made IOPubThread constructor backward compatible #1492 (@​JohanMabille, @​SylvainCorlay, @​ianthomas23, @​minrk)
• Advertises kernel protocol 5.5 #1488 (@​JohanMabille, @​ianthomas23)
• Upgrade to jupyter_client 8.8.0 #1487 (@​JohanMabille, @​ianthomas23)
• Implement kernel-side callstack filtering for internal frames #1481 (@​arjxn-py, @​JohanMabille, @​ianthomas23)

Bugs fixed

• add close event for wx timer app in loop_wx #1478 (@​newville, @​ianthomas23)

Maintenance and upkeep improvements

• Temporarily revert "Test changing base method to async after (#1464)" #1493 (@​ianthomas23, @​JohanMabille)
• Update pytest requirement from <9,>=7.0 to >=7.0,<10 in the actions group across 1 directory #1489 (@​JohanMabille)
• Removed spyder downstream tests #1486 (@​JohanMabille, @​ianthomas23)
• Bump scientific-python/upload-nightly-action from 0.6.2 to 0.6.3 in the actions group #1484 (@​JohanMabille)
• Fix linting errors #1480 (@​ianthomas23)
• Bump actions/checkout from 5 to 6 in the actions group #1479 (@​ianthomas23)
• chore: update pre-commit hooks #1472 (@​ianthomas23)
• chore: update pre-commit hooks #1467 (@​JohanMabille)
• Test changing base method to async after #1295 #1464 (@​Carreau, @​ianthomas23)

Contributors to this release

The following people contributed discussions, new ideas, code and documentation contributions, and review. See our definition of contributors.

(GitHub contributors page for this release)

@​arjxn-py (activity) | @​Carreau (activity) | @​ccordoba12 (activity) | @​ianthomas23 (activity) | @​JohanMabille (activity) | @​minrk (activity) | @​newville (activity) | @​SylvainCorlay (activity)

7.2.0a1

(Full Changelog)

New features added

• Added kernel_protocol_version to kernelspec #1483 (@​JohanMabille, @​ianthomas23)

... (truncated)

Commits

• 4b37e75 Publish 7.2.0
• 1630c4f Temporarily revert "Test changing base method to async after (#1464)" (#1493)
• 8086199 Temporarily revert "Test changing base method to async after (#1464)"
• a2d47a2 chore: update pre-commit hooks (#1472)
• 06c9aee Publish 7.2.0a1
• 220a3c6 Made IOPubThread constructor backward compatible (#1492)
• dee781d Update pytest requirement from <9,>=7.0 to >=7.0,<10 in the actions group acr...
• 56b2e29 Update pytest requirement in the actions group across 1 directory
• 13e17df Advertizes kernel protocol 5.5 (#1488)
• 59f0c65 Advertizes kernel protocol 5.5
• Additional commits viewable in compare view

Updates certifi from 2026.1.4 to 2026.2.25

Commits

• 8571a4b 2026.02.25 (#395)
• 6f7de00 Bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 (#390)
• a1de59b Bump actions/checkout from 6.0.1 to 6.0.2 (#391)
• 7f5ade5 Bump actions/setup-python from 6.1.0 to 6.2.0 (#392)
• See full diff in compare view

Updates ipyvue from 1.11.3 to 1.12.0

Commits

• 24b6940 chore: bump version: 1.11.3 → 1.12.0
• 6fae0f4 fix: make scoped CSS support optional via opt-in
• ebe8fc8 feat: add scoped CSS support
• e3cf902 fix: add a default sourceURL to aid debugging
• cc2842f chore: bump version: 1.11.2 → 1.11.3
• See full diff in compare view

Updates parso from 0.8.5 to 0.8.6

Changelog

Sourced from parso's changelog.

0.8.6 (2026-02-09) ++++++++++++++++++

• Switch the type checker to Zuban. It's faster and now also checks untyped code.

Commits

• 28005a5 Upgrade to 0.8.6
• 0e774b0 Add a changelog
• cc2c562 Merge pull request #235 from davidhalter/typing
• 341a60b Upgrade zuban
• c0f6b96 Add a way to debug github CI
• 5954156 Better dependencies
• a0fa3ae Pass older Python versions
• d13000a Fix a flake8 issue
• 0b6800c Use zuban instead of Mypy
• 59f4282 Fix a typing issue
• Additional commits viewable in compare view

Updates pillow from 12.1.0 to 12.1.1

Release notes

Sourced from pillow's releases.

12.1.1

https://pillow.readthedocs.io/en/stable/releasenotes/12.1.1.html

Dependencies

• Patch libavif for svt-av1 4.0 compatibility #9413 [@​hugovk]

Other changes

• Fix OOB Write with invalid tile extents #9427 [@​radarhere]

Commits

• 5158d98 12.1.1 version bump
• 9000313 Fix OOB Write with invalid tile extents (#9427)
• cd01118 Patch libavif for svt-av1 4.0 compatibility
• See full diff in compare view

Updates wcwidth from 0.5.3 to 0.6.0

Release notes

Sourced from wcwidth's releases.

0.6.0

• Complete textwrap.wrap() with 6 missing params! by @​jquast in jquast/wcwidth#207

Full Changelog: jquast/wcwidth@0.5.3...0.6.0

Commits

• e19d2a2 Complete textwrap.wrap() with 6 missing params! (#207)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions