Rename browser tab title to Home #6913 (@Cheukting)
Add the notification plugin #6900 (@jtpio)
Configurable default_url for JupyterNotebookApp #6899 (@paulgb)
Enhancement: Added drop shadows to markdown, text, and tree views #6893 (@rielAsh24)
Update to JupyterLab 4.0.1 #6892 (@jtpio)
Add file browser actions to the file browser toolbar #6888 (@jtpio)
Add option to open a notebook in NbClassic if it is installed; show “Open in…” dropdown menu if there are multiple options, show single button otherwise #6866 (@andrii-i)
Load custom CSS #6841 (@RRosio)

Bugs fixed#

Add an empty splash screen on notebook launch to avoid a flash of unstyled content #6911 (@andrii-i)
Fix for “find searches only part of the file” bug #6905 (@ericsnekbytes)
Provide a custom rendermime plugin to handle local links #6885 (@jtpio)

Maintenance and upkeep improvements#

Fix check links on CI #6910 (@jtpio)
Add JSONLicenseWebpackPlugin #6896 (@jtpio)
Simplify Gitpod setup #6894 (@jtpio)
Fix action name in update workflow #6884 (@jtpio)
Fix playwright bot #6880 (@jtpio)

Documentation improvements#

Document how to manage plugins and extensions #6909 (@jtpio)
Jupyter Notebook ecosystem docs improvements #6877 (@ericsnekbytes)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0b3#

(Full Changelog)

Enhancements made#

Copy edits for migrate_to_notebook7 #6879 (@JasonWeill)
Enable add a cell button #6872 (@tuncbkose)
Update to JupyterLab 4 final #6871 (@jtpio)
Remove “Close Tab” menu entry #6843 (@timmerk3)

Bugs fixed#

Fix handling of the default factory in the URL #6873 (@jtpio)

Maintenance and upkeep improvements#

Update to Playwright 1.33 #6874 (@jtpio)
Fix check links on CI #6870 (@jtpio)

Documentation improvements#

Copy edits for migrate_to_notebook7 #6879 (@JasonWeill)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0b2#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0rc1 #6864 (@jtpio)
Change “Interface” menu to “Open in…”, shorten names of menu items inside #6847 (@andrii-i)
Add Skip Link to Notebook #6844 (@seirani)

Bugs fixed#

Fix top bar visibility not picking up settings overrides (#6833) #6836 (@yumyumqing)

Maintenance and upkeep improvements#

Update RTD image #6861 (@blink1073)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0b1#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0rc0 #6853 (@jtpio)
Update to JupyterLab 4.0.0b1 and 4.0.0b2 #6838 (@jtpio)

Bugs fixed#

Fixes the notebooktools #6834 (@brichet)

Maintenance and upkeep improvements#

Use local coverage #6839 (@blink1073)

Documentation improvements#

Added extra information and user-action summaries to 7 migration docs. #6850 (@ericsnekbytes)
Rename migration file to migrate_to_notebook7 #6831 (@jtpio)
Use correct canonical URL while building docs #6829 (@ashwinvis)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0b0#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0b0 #6803 (@jtpio)

Bugs fixed#

added white space to bottom of edit files #6804 (@jesuscastillx)
Hides ‘micro’ toolbars in notebook #6791 (@JasonWeill)

Maintenance and upkeep improvements#

Add missing singleton packages for RTC #6816 (@jtpio)

Documentation improvements#

Improve the documentation for Notebook 7 #6813 (@jtpio)
fix typo in the migration guide #6812 (@Tiksagol)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a18#

(Full Changelog)

Enhancements made#

Add back the csvviewer-extension #6799 (@jtpio)
Fix JSON setting editor not opening issue #6795 (@yumyumqing)

Contributors to this release#

(GitHub contributors page for this release)

@github-actions | @jtpio | @yumyumqing

7.0.0a17#

(Full Changelog)

Highlights#

This major change in this release is the update to the latest JupyterLab 4.0.0a37.

Check out the JupyterLab 4.0.0a37 release notes for more details.

Enhancements made#

Update to JupyterLab 4.0.0a37 #6777 (@jtpio)

Maintenance and upkeep improvements#

Replace the use of toArray by Array.from #6775 (@tarunsamanta2k20)

Contributors to this release#

(GitHub contributors page for this release)

@github-actions | @jtpio | @tarunsamanta2k20

7.0.0a16#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0a36 #6773 (@jtpio)

Maintenance and upkeep improvements#

Clean up interface switcher plugin in preparation for release #6766 (@afshin)
Remove empty py.test file #6764 (@frenzymadness)

Documentation improvements#

Add documentation for contributing to the docs #6771 (@jtpio)
Convert docs to Markdown #6770 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

@afshin | @frenzymadness | @github-actions | @jtpio

7.0.0a15#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0a35 #6757 (@jtpio)

Maintenance and upkeep improvements#

Bump vega from 5.22.1 to 5.23.0 in /ui-tests #6756 (@dependabot)
Bump vega-functions from 5.13.0 to 5.13.1 in /ui-tests #6754 (@dependabot)

Contributors to this release#

(GitHub contributors page for this release)

@dependabot | @github-actions | @jtpio | @pre-commit-ci

7.0.0a14#

(Full Changelog)

Enhancements made#

Fix loading of plugins #6750 (@jtpio)
Add the extension manager #6747 (@jtpio)
File browser CSS tweaks #6738 (@jtpio)
Add trusted indicator #6736 (@jtpio)

Maintenance and upkeep improvements#

Clean up license #6743 (@dcsaba89)
Update to TypeScript 5 #6735 (@jtpio)
Enable nx #6718 (@jtpio)

Documentation improvements#

Corrected “Recomment” to “Recommend” #6741 (@Tony-j77)
Docs: add migrate to notebook7 page #6737 (@echarles)
Add section about updating reference snapshots #6733 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a13#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0a34 #6732 (@jtpio)
Hide the debugger button on mobile #6731 (@jtpio)
Adds translator to the NotebookShell #6725 (@brichet)
Resolving some accessibility issues #6719 (@brichet)

Maintenance and upkeep improvements#

Fix Playwright snapshot update workflow #6724 (@jtpio)
Add workflow to update snapshots #6723 (@jtpio)
Use Playwright webServer #6720 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

@brichet | @github-actions | @jtpio | @pre-commit-ci

7.0.0a12#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0a33 #6713 (@jtpio)

Maintenance and upkeep improvements#

Add more lint checks #6706 (@blink1073)
Reintroduce desktop file #6705 (@frenzymadness)

Contributors to this release#

(GitHub contributors page for this release)

@blink1073 | @frenzymadness | @github-actions | @jtpio

7.0.0a11#

(Full Changelog)

Enhancements made#

Tree view enhancement #6588 (@brichet)
Add the Settings Editor to the landing page #6316 (@jtpio)

Bugs fixed#

Fix console error when adding a widget to a side panel #6694 (@jtpio)

Maintenance and upkeep improvements#

Help-extension split into multiple plugins #6700 (@RRosio)
Add releaser workflows #6698 (@blink1073)
Create auto_author_assign.yml workflow #6696 (@jtpio)
Add back # type:ignore #6695 (@jtpio)
Fix environment activation on Gitpod #6693 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

@blink1073 | @brichet | @github-actions | @jtpio | @RRosio

7.0.0a10#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0a32 #6678 (@jtpio)

Maintenance and upkeep improvements#

Bump json5 from 2.2.1 to 2.2.3 in /ui-tests #6684 (@dependabot)
Bump json5 from 1.0.1 to 1.0.2 #6681 (@dependabot)
Update the copyright date to 2023 in the about dialog #6679 (@jtpio)
Fix check_links and Test Lint CI failures #6675 (@jtpio)
Add spelling and docstring enforcement #6669 (@blink1073)
CI Cleanup #6667 (@blink1073)
Adopt ruff and typing #6658 (@blink1073)
Bump decode-uri-component from 0.2.0 to 0.2.2 #6651 (@dependabot)
Bump dessant/lock-threads from 3 to 4 #6650 (@dependabot)
Update to TypeScript 4.9 #6640 (@jtpio)
Add more Python tests #6639 (@blink1073)
use main branch for config #6638 (@blink1073)
Clean up workflows #6635 (@blink1073)
CI Cleanup #6631 (@blink1073)
Fix issue template formatting #6626 (@jtpio)

Documentation improvements#

Remove PDF link to Jupyter Notebook docs #6648 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a9#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0a31 #6627 (@jtpio)

Bugs fixed#

Explicitly specify favicon for /tree view in Notebook #6608 (@mcrutch)

Maintenance and upkeep improvements#

Add run-p (npm-run-all) to dev dependencies #6629 (@gabalafou)
Moves panel related objects to a dedicated module file #6625 (@brichet)
Use pathlib instead of os.path.join in tests/conftest.py #6624 (@kianelbo)
Bump loader-utils from 1.4.1 to 1.4.2 #6623 (@dependabot)
Bump to Python 3.11 on CI #6600 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a8#

(Full Changelog)

Enhancements made#

Restyle about dialog #6592 (@kostyafarber)

Bugs fixed#

Fix async contents handling and add test #6616 (@blink1073)
Fix PDF renderer #6584 (@brichet)
Fix HTML viewer #6583 (@brichet)

Maintenance and upkeep improvements#

Bump loader-utils from 1.4.0 to 1.4.1 #6615 (@dependabot)
Bump dessant/lock-threads from 2 to 3 #6587 (@dependabot)
Add dependabot config to update GitHub Actions #6586 (@jtpio)
Update actions/checkout and actions/download-artifact #6585 (@jtpio)
Maintenance cleanup #6581 (@blink1073)
Update to lerna 6 #6579 (@jtpio)
Remove the nbclassic explicit uninstall on Binder #6548 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a7#

(Full Changelog)

Enhancements made#

Fixed user menu alignment #6565 (@Mieju)
Support for Left and Right panels #6487 (@brichet)

Maintenance and upkeep improvements#

Update to JupyterLab 4.0.0a30 #6566 (@jtpio)

Documentation improvements#

Fix typo in CHANGELOG.md #6561 (@eltociear)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a6#

(Full Changelog)

Enhancements made#

Add token on tree widget #6496 (@brichet)
Updates README to document maintained versions #6480 (@JasonWeill)
Change the tab renderer to allow adding closable tab #6477 (@brichet)

Bugs fixed#

Fix: No mouse pointer when hovering on the Jupyter icon #6550 (@hawkeyes21)

Maintenance and upkeep improvements#

Switch to hatch for python version #6544 (@blink1073)
Update to Lumino 2 and JupyterLab 4.0.0a29 #6539 (@afshin)
Update lerna version #6535 (@blink1073)
Add task to auto activate the dev environment on Gitpod #6527 (@jtpio)
Troubleshoot failing macos check on CI #6523 (@jtpio)
Update reference snapshots #6520 (@jtpio)
Add Gitpod files #6518 (@jtpio)
Adding jupyterlab-probot yml file for labeling new issues #6506 (@RRosio)
Uninstall nbclassic on Binder so Notebook v7 can load #6505 (@jtpio)
Pin ypy-websocket to 0.2 #6499 (@jtpio)
Bump moment from 2.29.3 to 2.29.4 #6483 (@dependabot)
Bump moment from 2.29.2 to 2.29.4 in /ui-tests #6482 (@dependabot)
Bump terser from 5.13.1 to 5.14.2 #6481 (@dependabot)
Bump parse-url from 6.0.0 to 6.0.2 #6465 (@dependabot)
Fix tests #6464 (@jtpio)
Bump jpeg-js from 0.4.3 to 0.4.4 in /ui-tests #6455 (@dependabot)

Documentation improvements#

Updates README to document maintained versions #6480 (@JasonWeill)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a5#

(Full Changelog)

Enhancements made#

Add shadow to cells #6433 (@trungleduc)

Maintenance and upkeep improvements#

Fix docs build #6447 (@jtpio)
[pre-commit.ci] pre-commit autoupdate #6444 (@pre-commit-ci)
[pre-commit.ci] pre-commit autoupdate #6439 (@pre-commit-ci)
[pre-commit.ci] pre-commit autoupdate #6434 (@pre-commit-ci)
Use hatch backend #6425 (@blink1073)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a4#

(Full Changelog)

Enhancements made#

Update to JupyterLab 4.0.0a25 #6429 (@jtpio)
Add cell toolbar extension #6418 (@jtpio)
add the show header command to the command palette #6415 (@jeewonkoo)
Remove the “Appearance” menu entry #6412 (@jtpio)

Maintenance and upkeep improvements#

[pre-commit.ci] pre-commit autoupdate #6426 (@pre-commit-ci)
Allow bot PRs to be automatically labeled #6414 (@blink1073)
Add Visual Regression Test for the export submenu #6383 (@jtpio)
Fix ESLint config for tests #6382 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a3#

(Full Changelog)

Enhancements made#

Show file checkboxes by default in the file browser #6377 (@jtpio)
Remove blank space at the bottom of the notebook #6376 (@jtpio)
Add a label to the upload button #6374 (@jtpio)
Update to JupyterLab 4.0.0a24 #6371 (@jtpio)
Initialize handler page_config from Server traitlets #6366 (@bollwyvl)
Add project URLs to setup.cfg #6346 (@tlinhart)
Update to JupyterLab 4.0.0a23 #6336 (@jtpio)

Bugs fixed#

Fix opening JupyterLab from Notebook #6379 (@jtpio)

Maintenance and upkeep improvements#

Add UI tests for a simple notebook #6380 (@jtpio)
Bump async from 2.6.3 to 2.6.4 in /ui-tests #6370 (@dependabot)
Fix build workflow on CI #6369 (@jtpio)
[pre-commit.ci] pre-commit autoupdate #6365 (@pre-commit-ci)
[pre-commit.ci] pre-commit autoupdate #6355 (@pre-commit-ci)
Bump moment from 2.29.1 to 2.29.2 #6352 (@dependabot)
Bump moment from 2.29.1 to 2.29.2 in /ui-tests #6351 (@dependabot)
Clean up pre-commit #6349 (@blink1073)
Update to TypeScript 4.6 #6345 (@jtpio)
[pre-commit.ci] pre-commit autoupdate #6343 (@pre-commit-ci)
Add pytest and handle warnings #6338 (@blink1073)
Add flake8 and git-blame-ignore-revs #6337 (@blink1073)
Run Autoformatters #6335 (@blink1073)
Bump minimist from 1.2.5 to 1.2.6 #6334 (@dependabot)
Bump minimist from 1.2.5 to 1.2.6 in /ui-tests #6333 (@dependabot)
Bump ansi-regex from 3.0.0 to 3.0.1 in /ui-tests #6332 (@dependabot)
Adopt pre-commit #6331 (@blink1073)

Documentation improvements#

Link to v6 plan in the README #6375 (@echarles)
Copy edits in config, edits bug report template #6364 (@JasonWeill)

Contributors to this release#

(GitHub contributors page for this release)

7.0.0a2#

(Full Changelog)

Enhancements made#

Add support for opening a document with a different factory #6315 (@jtpio)
Minor copy edit in README #6313 (@JasonWeill)

Bugs fixed#

Fix rendering of markdown #6318 (@jtpio)

Maintenance and upkeep improvements#

Update to JupyterLab 4.0.0a22 #6314 (@jtpio)

Documentation improvements#

docs: fix spelling #6317 (@dijonkitchen)
Minor copy edit in README #6313 (@JasonWeill)
Update example notebook on Binder #6306 (@jtpio)

Contributors to this release#

(GitHub contributors page for this release)

@dijonkitchen | @fcollonval | @github-actions | @jtpio | @JasonWeill

7.0.0a1#

(Full Changelog)

Enhancements made#

Notebook v7 scaffolding #6294 (@jtpio)

Maintenance and upkeep improvements#

Clean up CI #6304 (@blink1073)
Remove the custom run keyboard shortcut #6303 (@jtpio)
Bump nanoid from 3.1.30 to 3.3.1 in /ui-tests #6302 (@dependabot)
Bump simple-get from 3.1.0 to 3.1.1 in /ui-tests #6301 (@dependabot)
Bump url-parse from 1.5.4 to 1.5.10 in /ui-tests #6300 (@dependabot)
Bump node-fetch from 2.6.6 to 2.6.7 in /ui-tests #6299 (@dependabot)
Bump follow-redirects from 1.14.5 to 1.14.9 in /ui-tests #6298 (@dependabot)

Contributors to this release#

(GitHub contributors page for this release)

6.4.8#

(Full Changelog)

Bugs fixed#

Fix to remove potential memory leak on Jupyter Notebooks ZMQChannelHandler code #6251 (@Vishwajeet0510)

Contributors to this release#

(GitHub contributors page for this release)

@Vishwajeet0510

6.4.7#

(Full Changelog)

Bugs fixed#

Fix Chinese punctuation #6268 (@LiHua-Official)
Add date field to kernel message header #6265 (@kevin-bates)
Fix deprecation warning #6253 (@tornaria)

Maintenance and upkeep improvements#

Enforce labels on PRs #6235 (@blink1073)
Fix: CI error for python 3.6 & macOS #6215 (@penguinolog)

Other merged PRs#

handle KeyError when get session #6245 (@ccw630)
Updated doc for passwd #6209 (@antoinecarme)

Contributors to this release#

(GitHub contributors page for this release)

6.4.6#

(Full Changelog)

Bugs fixed#

Fix asyncio error when opening notebooks #6221 (@dleen)
Change to use a universal Chinese translation on certain words #6218 (@jackexu)
Fix Chinese translation typo #6211 (@maliubiao
Fix send2trash tests failing on Windows #6127 (@dolfinus)

Maintenance and upkeep improvements#

TST: don’t look in user site for serverextensions #6233 (@bnavigator)
Enable terminal tests as pywinpty is ported for python 3.9 #6228 (@nsait-linaro)

Contributors to this release#

(GitHub contributors page for this release)

6.4.5#

(Full Changelog)

Bug fixes#

Recover from failure to render mimetype #6181 (@martinRenou)

Maintenance and upkeep improvements#

Fix crypto handling #6197 (@blink1073)
Fix jupyter_client warning #6178 (@martinRenou)

Documentation improvements#

Fix nbsphinx settings #6200 (@mgeier)
Fully revert the pinning of nbsphinx to 0.8.6 #6201 (@kevin-bates)
Pin nbsphinx to 0.8.6, clean up orphaned resources #6194 (@kevin-bates)
Fix typo in docstring #6188 (@jgarte)

Contributors to this release#

(GitHub contributors page for this release)

@blink1073 | @jgarte | @kevin-bates | @martinRenou | @mgeier

6.4.4#

(Full Changelog)

Documentation improvements#

Update Manual Release Instructions #6152 (@blink1073)

Other merged PRs#

Use default JupyterLab CSS sanitizer options for Markdown #6160 (@krassowski)
Fix syntax highlight #6128 (@massongit)

Contributors to this release#

(GitHub contributors page for this release)

6.4.3#

(Full Changelog)

Bugs fixed#

Add @babel/core dependency #6133 (@afshin)
Switch webpack to production mode #6131 (@afshin)

Maintenance and upkeep improvements#

Clean up link checking #6130 (@blink1073)

Contributors to this release#

(GitHub contributors page for this release)

@afshin | @blink1073 | @Zsailer

6.4.2#

(Full Changelog)

Bugs fixed#

Add missing file to manifest #6122 (@afshin)
Fix issue #3218 #6108 (@Nazeeh21)
Fix version of jupyter-packaging in pyproject.toml #6101 (@frenzymadness)
“#element”.tooltip is not a function on home page fixed. #6070 @ilayh123

Maintenance and upkeep improvements#

Enhancements to the desktop entry #6099 (@Amr-Ibra)
Add missing spaces to help messages in config file #6085 (@saiwing-yeung)

Contributors to this release#

(GitHub contributors page for this release)

6.4.0#

(Full Changelog)

Bugs fixed#

Fix Handling of Encoded Paths in Save As Dialog #6030 (@afshin)
Fix: split_cell doesn’t always split cell #6017 (@gamestrRUS)
Correct ‘Content-Type’ headers #6026 (@faucct)
Fix skipped tests & remove deprecation warnings #6018 (@befeleme)
[Gateway] Track only this server’s kernels #5980 (@kevin-bates)
Bind the HTTPServer in start #6061

Maintenance and upkeep improvements#

Revert “do not apply asyncio patch for tornado >=6.1” #6052 (@minrk)
Use Jupyter Releaser #6048 (@afshin)
Add Workflow Permissions for Lock Bot #6042 (@jtpio)
Fixes related to the recent changes in the documentation #6021 (@frenzymadness)
Add maths checks in CSS reference test #6035 (@stef4k)
Add Issue Lock and Answered Bots #6019 (@afshin)

Documentation improvements#

Spelling correction #6045 (@wggillen)
Minor typographical and comment changes #6025 (@misterhay)
Fixes related to the recent changes in the documentation #6021 (@frenzymadness)
Fix readthedocs environment #6020 (@blink1073)

Contributors to this release#

(GitHub contributors page for this release)

6.3.0#

Merged PRs#

Add square logo and desktop entry files #6010 (@befeleme)
Modernize Changelog #6008 (@afshin)
Add missing “import inspect” #5999 (@mgeier)
Add Codecov badge to README #5989 (@thomasrockhu)
Remove configuration for nosetests from setup.cfg #5986 (@frenzymadness)
Update security.rst #5978 (@dlrice)
Docs-Translations: Updated Hindi and Chinese Readme.md #5976 (@rjn01)
Allow /metrics by default if auth is off #5974 (@blairdrummond)
Skip terminal tests on Windows 3.9+ (temporary) #5968 (@kevin-bates)
Update GatewayKernelManager to derive from AsyncMappingKernelManager #5966 (@kevin-bates)
Drop use of deprecated pyzmq.ioloop #5965 (@kevin-bates)
Drop support for Python 3.5 #5962 (@kevin-bates)
Allow jupyter_server-based contents managers in notebook #5957 (@afshin)
Russian translation fixes #5954 (@insolor)
Increase culling test idle timeout #5952 (@kevin-bates)
Re-enable support for answer_yes flag #5941 (@afshin)
Replace Travis and Appveyor with Github Actions #5938 (@kevin-bates)
DOC: Server extension, extra docs on configuration/authentication. #5937 (@Carreau)

Contributors to this release#

(GitHub contributors page for this release)

6.2.0#

Merged PRs#

Increase minimum tornado version (5933)
Adjust skip decorators to avoid remaining dependency on nose (5932)
Ensure that cell ids persist after save (5928)
Add reconnection to Gateway (form nb2kg) (5924)
Fix some typos (5917)
Handle TrashPermissionError, now that it exist (5894)

Thank you to all the contributors:

@kevin-bates
@mishaschwartz
@oyvsyo
@user202729
@stefanor

6.1.6#

Merged PRs#

do not require nose for testing (5826)
[docs] Update Chinese and Hindi readme.md (5823)
Add support for creating terminals via GET (5813)
Made doc translations in Hindi and Chinese (5787)

Thank you to all the contributors:

@pgajdos
@rjn01
@kevin-bates
@virejdasani

6.1.5#

6.1.5 is a security release, fixing one vulnerability:

Fix open redirect vulnerability GHSA-c7vm-f5p4-8fqh (CVE to be assigned)

6.1.4#

Fix broken links to jupyter documentation (5686)
Add additional entries to troubleshooting section (5695)
Revert change in page alignment (5703)
Bug fix: remove double encoding in download files (5720)
Fix typo for Check in zh_CN (5730)
Require a file name in the “Save As” dialog (5733)

Thank you to all the contributors:

bdbai
Jaipreet Singh
Kevin Bates
Pavel Panchekha
Zach Sailer

6.1.3#

Title new buttons with label if action undefined (5676)

Thank you to all the contributors:

Kyle Kelley

6.1.2#

Fix russian message format for delete/duplicate actions (5662)
Remove unnecessary import of bind_unix_socket (5666)
Tooltip style scope fix (5672)

Thank you to all the contributors:

Dmitry Akatov
Kevin Bates
Magda Stenius

6.1.1#

Prevent inclusion of requests_unixsocket on Windows (5650)

Thank you to all the contributors:

Kevin Bates

6.1.0#

Please note that this repository is currently maintained by a skeleton crew of maintainers from the Jupyter community. For our approach moving forward, please see this notice from the README. Thank you.

Here is an enumeration of changes made since the last release and included in 6.1.0.

Remove deprecated encoding parameter for Python 3.9 compatibility. (5174)
Add support for async kernel management (4479)
Fix typo in password_required help message (5320)
Gateway only: Ensure launch and request timeouts are in sync (5317)
Update Markdown Cells example to HTML5 video tag (5411)
Integrated LoginWidget into edit to enable users to logout from the t… (5406)
Update message about minimum Tornado version (5222)
Logged notebook type (5425)
Added nl language (5354)
Add UNIX socket support to notebook server. (4835)
Update CodeMirror dependency (5198)
Tree added download multiple files (5351)
Toolbar buttons tooltip: show help instead of label (5107)
Remove unnecessary import of requests_unixsocket (5451)
Add ability to cull terminals and track last activity (5372)
Code refactoring notebook.js (5352)
Install terminado for docs build (5462)
Convert notifications JS test to selenium (5455)
Add cell attachments to markdown example (5412)
Add Japanese document (5231)
Migrate Move multiselection test to selenium (5158)
Use cmdtrl-enter to run a cell (5120)
Fix broken “Raw cell MIME type” dialog (5385)
Make a notebook writable after successful save-as (5296)
Add actual watch script (4738)
Added --autoreload flag to NotebookApp (4795)
Enable check_origin on gateway websocket communication (5471)
Restore detection of missing terminado package (5465)
Culling: ensure last_activity attr exists before use (5355)
Added functionality to allow filter kernels by Jupyter Enterprise Gat… (5484)
‘Play’ icon for run-cell toolbar button (2922)
Bump minimum version of jQuery to 3.5.0 (5491)
Remove old JS markdown tests, add a new one in selenium (5497)
Add support for more RTL languages (5036)
Make markdown cells stay RTL in edit mode (5037)
Unforce RTL output display (5039)
Fixed multicursor backspacing (4880)
Implemented Split Cell for multicursor (4824)
Alignment issue [FIXED] (3173)
MathJax: Support for \gdef (4407)
Another (Minor) Duplicate Code Reduction (5316)
Update readme regarding maintenance (5500)
Document contents chunks (5508)
Backspace deletes empty line (5516)
The dropdown submenu at notebook page is not keyboard accessible (4732)
Tooltips visible through keyboard navigation for specified buttons (4729)
Fix for recursive symlink (4670)
Fix for the terminal shutdown issue (4180)
Add japanese translation files (4490)
Workaround for socket permission errors on Cygwin (4584)
Implement optional markdown header and footer files (4043)
Remove double link when using custom_display_url (5544)
Respect cell.is_editable during find-and-replace (5545)
Fix exception causes all over the codebase (5556
Improve login shell heuristics (5588)
Added support for JUPYTER_TOKEN_FILE (5587)
Kill notebook itself when server cull idle kernel (5593)
Implement password hashing with bcrypt (3793)
Fix broken links (5600)
Russian internationalization support (5571)
Add a metadata tag to override notebook direction (ltr/rtl) (5052)
Paste two images from clipboard in markdown cell (5598)
Add keyboard shortcuts to menu dropdowns (5525)
Update codemirror to 5.56.0+components1 (5637)

Thank you to all the contributors:

Aaron Myatt
Adam Blake
Afshin Taylor Darian
Aman Bansal
Ben Thayer
berendjan
Bruno P. Kinoshita
bzinberg
Christophe Cadilhac
Daiki Katsuragawa
David Lukes
Dmitriy Q
dmpe
dylanzjy
dSchurch
E. M. Bray
ErwinRussel
Felix Mönckemeyer
Grant Nestor
Jarrad Whitaker
Jesus Panales Castillo
Joshua Zeltser
Karthikeyan Singaravelan
Kenichi Ito
Kevin Bates
Koki Nishihara
Kris Wilson
Kyle Kelley
Laura Merlo
levinxo
Luciano Resende
Luis Cabezon Manchado
Madhusudhan Srinivasa
Matthias Geier
mattn
Max Klein
Min RK
Mingxuan Lin
Mohammad Mostafa Farzan
Niko Felger
Norah Abanumay
Onno Broekmans
PierreMB
pinarkavak
Ram Rachum
Reece Hart
Remi Rampin
Rohit Sanjay
Shane Canon
Simon Li
Steinar Sturlaugsson
Steven Silvester
taohan16
Thew Dhanat
Thomas Kluyver
Toon Baeyens
Vidar Tonaas Fauske
Zachary Sailer

6.0.3#

Dependency updates to fix startup issues on Windows platform
Add support for nbconvert 6.x
Creation of recent tab

Thanks for all the contributors:

Luciano Resende
Kevin Bates
ahangsleben
Zachary Sailer
Pallavi Bharadwaj
Thomas Kluyver
Min RK
forest0
Bibo Hao
Michal Charemza
Sergey Shevelev
Shuichiro MAKIGAKI
krinsman
TPartida
Landen McDonald
Tres DuBiel

6.0.2#

Update JQuery dependency to version 3.4.1 to fix security vulnerability (CVE-2019-11358)
Update CodeMirror to version 5.48.4 to fix Python formatting issues
Continue removing obsolete Python 2.x code/dependencies
Multiple documentation updates

Thanks for all the contributors:

David Robles
Jason Grout
Kerwin Sun
Kevin Bates
Kyle Kelley
Luciano Resende
Marcus D Sherman
Sasaki Takeru
Tom Jarosz
Vidar Tonaas Fauske
Wes Turner
Zachary Sailer

6.0.1#

Attempt to re-establish websocket connection to Gateway (4777)
Add missing react-dom js to package data (4772)

Thanks for all the contributors:

Eunsoo Park
Min RK

6.0#

This is the first major release of the Jupyter Notebook since version 5.0 (March 2017).

We encourage users to start trying JupyterLab, which has just announced it’s 1.0 release in preparation for a future transition.

Remove Python 2.x support in favor of Python 3.5 and higher.
Multiple accessibility enhancements and bug-fixes.
Multiple translation enhancements and bug-fixes.
Remove deprecated ANSI CSS styles.
Native support to forward requests to Jupyter Gateway(s) (Embedded NB2KG).
Use JavaScript to redirect users to notebook homepage.
Enhanced SSL/TLS security by using PROTOCOL_TLS which selects the highest ssl/tls protocol version available that both the client and server support. When PROTOCOL_TLS is not available use PROTOCOL_SSLv23.
Add ?no_track_activity=1 argument to allow API requests. to not be registered as activity (e.g. API calls by external activity monitors).
Kernels shutting down due to an idle timeout is no longer considered an activity-updating event.
Further improve compatibility with tornado 6 with improved checks for when websockets are closed.
Launch the browser with a local file which redirects to the server address including the authentication token. This prevents another logged-in user from stealing the token from command line arguments and authenticating to the server. The single-use token previously used to mitigate this has been removed. Thanks to Dr. Owain Kenway for suggesting the local file approach.
Respect nbconvert entrypoints as sources for exporters
Update to CodeMirror to 5.37, which includes f-string syntax for Python 3.6.
Update jquery-ui to 1.12
Execute cells by clicking icon in input prompt.
New “Save as” menu option.
When serving on a loopback interface, protect against DNS rebinding by checking the Host header from the browser. This check can be disabled if necessary by setting NotebookApp.allow_remote_access. (Disabled by default while we work out some Mac issues in 3754).
Add kernel_info_timeout traitlet to enable restarting slow kernels.
Add custom_display_host config option to override displayed URL.
Add /metrics endpoint for Prometheus Metrics.
Optimize large file uploads.
Allow access control headers to be overridden in jupyter_notebook_config.py to support greater CORS and proxy configuration flexibility.
Add support for terminals on windows.
Add a “restart and run all” button to the toolbar.
Frontend/extension-config: allow default json files in a .d directory.
Allow setting token via jupyter_token env.
Cull idle kernels using --MappingKernelManager.cull_idle_timeout.
Allow read-only notebooks to be trusted.
Convert JS tests to Selenium.

Security Fixes included in previous minor releases of Jupyter Notebook and also included in version 6.0.

Fix Open Redirect vulnerability (CVE-2019-10255) where certain malicious URLs could redirect from the Jupyter login page to a malicious site after a successful login.
Contains a security fix for a cross-site inclusion (XSSI) vulnerability (CVE-2019–9644), where files at a known URL could be included in a page from an unauthorized website if the user is logged into a Jupyter server. The fix involves setting the X-Content-Type-Options: nosniff header, and applying CSRF checks previously on all non-GET API requests to GET requests to API endpoints and the /files/ endpoint.
Check Host header to more securely protect localhost deployments from DNS rebinding. This is a pre-emptive measure, not fixing a known vulnerability. Use .NotebookApp.allow_remote_access and .NotebookApp.local_hostnames to configure access.
Upgrade bootstrap to 3.4, fixing an XSS vulnerability, which has been assigned CVE-2018-14041.
Contains a security fix preventing malicious directory names from being able to execute javascript.
Contains a security fix preventing nbconvert endpoints from executing javascript with access to the server API. CVE request pending.

Thanks for all the contributors:

AAYUSH SINHA
Aaron Hall, MBA
Abhinav Sagar
Adam Rule
Adeel Ahmad
Alex Rothberg
Amy Skerry-Ryan
Anastasis Germanidis
Andrés Sánchez
Arjun Radhakrishna
Arovit Narula
Benda Xu
Björn Grüning
Brian E. Granger
Carol Willing
Celina Kilcrease
Chris Holdgraf
Chris Miller
Ciaran Langton
Damian Avila
Dana Lee
Daniel Farrell
Daniel Nicolai
Darío Hereñú
Dave Aitken
Dave Foster
Dave Hirschfeld
Denis Ledoux
Dmitry Mikushin
Dominic Kuang
Douglas Hanley
Elliott Sales de Andrade
Emilio Talamante Lugo
Eric Perry
Ethan T. Hendrix
Evan Van Dam
Francesco Franchina
Frédéric Chapoton
Félix-Antoine Fortin
Gabriel
Gabriel Nützi
Gabriel Ruiz
Gestalt LUR
Grant Nestor
Gustavo Efeiche
Harsh Vardhan
Heng GAO
Hisham Elsheshtawy
Hong Xu
Ian Rose
Ivan Ogasawara
J Forde
Jason Grout
Jessica B. Hamrick
Jiaqi Liu
John Emmons
Josh Barnes
Karthik Balakrishnan
Kevin Bates
Kirit Thadaka
Kristian Gregorius Hustad
Kyle Kelley
Leo Gallucci
Lilian Besson
Lucas Seiki Oshiro
Luciano Resende
Luis Angel Rodriguez Guerrero
M Pacer
Maarten Breddels
Mac Knight
Madicken Munk
Maitiú Ó Ciaráin
Marc Udoff
Mathis HAMMEL
Mathis Rosenhauer
Matthias Bussonnier
Matthias Geier
Max Vovshin
Maxime Mouchet
Michael Chirico
Michael Droettboom
Michael Heilman
Michael Scott Cuthbert
Michal Charemza
Mike Boyle
Milos Miljkovic
Min RK
Miro Hrončok
Nicholas Bollweg
Nitesh Sawant
Ondrej Jariabka
Park Hae Jin
Paul Ivanov
Paul Masson
Peter Parente
Pierre Tholoniat
Remco Verhoef
Roland Weber
Roman Kornev
Rosa Swaby
Roy Hyunjin Han
Sally
Sam Lau
Samar Sultan
Shiti Saxena
Simon Biggs
Spencer Park
Stephen Ward
Steve (Gadget) Barnes
Steven Silvester
Surya Prakash Susarla
Syed Shah
Sylvain Corlay
Thomas Aarholt
Thomas Kluyver
Tim
Tim Head
Tim Klever
Tim Metzler
Todd
Tom Jorquera
Tyler Makaro
Vaibhav Sagar
Victor
Vidar Tonaas Fauske
Vu Minh Tam
Vít Tuček
Will Costello
Will Starms
William Hosford
Xiaohan Li
Yuvi Panda
ashley teoh
nullptr

5.7.8#

Fix regression in restarting kernels in 5.7.5. The restart handler would return before restart was completed.
Further improve compatibility with tornado 6 with improved checks for when websockets are closed.
Fix regression in 5.7.6 on Windows where .js files could have the wrong mime-type.
Fix Open Redirect vulnerability (CVE-2019-10255) where certain malicious URLs could redirect from the Jupyter login page to a malicious site after a successful login. 5.7.7 contained only a partial fix for this issue.

5.7.6#

5.7.6 contains a security fix for a cross-site inclusion (XSSI) vulnerability (CVE-2019–9644), where files at a known URL could be included in a page from an unauthorized website if the user is logged into a Jupyter server. The fix involves setting the X-Content-Type-Options: nosniff header, and applying CSRF checks previously on all non-GET API requests to GET requests to API endpoints and the /files/ endpoint.

The attacking page is able to access some contents of files when using Internet Explorer through script errors, but this has not been demonstrated with other browsers.

5.7.5#

Fix compatibility with tornado 6 (4392, 4449).
Fix opening integer filedescriptor during startup on Python 2 (4349)
Fix compatibility with asynchronous [KernelManager.restart_kernel]{.title-ref} methods (4412)

5.7.4#

5.7.4 fixes a bug introduced in 5.7.3, in which the list_running_servers() function attempts to parse HTML files as JSON, and consequently crashes (4284).

5.7.3#

5.7.3 contains one security improvement and one security fix:

Launch the browser with a local file which redirects to the server address including the authentication token (4260). This prevents another logged-in user from stealing the token from command line arguments and authenticating to the server. The single-use token previously used to mitigate this has been removed. Thanks to Dr. Owain Kenway for suggesting the local file approach.
Upgrade bootstrap to 3.4, fixing an XSS vulnerability, which has been assigned CVE-2018-14041 (4271).

5.7.2#

5.7.2 contains a security fix preventing malicious directory names from being able to execute javascript. CVE request pending.

5.7.1#

5.7.1 contains a security fix preventing nbconvert endpoints from executing javascript with access to the server API. CVE request pending.

5.7.0#

New features:

Update to CodeMirror to 5.37, which includes f-string syntax for Python 3.6 (3816)
Update jquery-ui to 1.12 (3836)
Check Host header to more securely protect localhost deployments from DNS rebinding. This is a pre-emptive measure, not fixing a known vulnerability (3766). Use .NotebookApp.allow_remote_access and .NotebookApp.local_hostnames to configure access.
Allow access-control-allow-headers to be overridden (3886)
Allow configuring max_body_size and max_buffer_size (3829)
Allow configuring get_secure_cookie keyword-args (3778)
Respect nbconvert entrypoints as sources for exporters (3879)
Include translation sources in source distributions (3925, 3931)
Various improvements to documentation (3799, 3800, 3806, 3883, 3908)

Fixing problems:

Fix breadcrumb link when running with a base url (3905)
Fix possible type error when closing activity stream (3907)
Disable metadata editing for non-editable cells (3744)
Fix some styling and alignment of prompts caused by regressions in 5.6.0.
Enter causing page reload in shortcuts editor (3871)
Fix uploading to the same file twice (3712)

See the 5.7 milestone on GitHub for a complete list of pull requests involved in this release.

Thanks to the following contributors:

Aaron Hall
Benjamin Ragan-Kelley
Bill Major
bxy007
Dave Aitken
Denis Ledoux
Félix-Antoine Fortin
Gabriel
Grant Nestor
Kevin Bates
Kristian Gregorius Hustad
M Pacer
Madicken Munk
Maitiu O Ciarain
Matthias Bussonnier
Michael Boyle
Michael Chirico
Mokkapati, Praneet(ES)
Peter Parente
Sally Wilsak
Steven Silvester
Thomas Kluyver
Walter Martin

5.6.0#

New features:

Execute cells by clicking icon in input prompt (3535, 3687)
New “Save as” menu option (3289)
When serving on a loopback interface, protect against DNS rebinding by checking the Host header from the browser (3714). This check can be disabled if necessary by setting NotebookApp.allow_remote_access. (Disabled by default while we work out some Mac issues in 3754).
Add kernel_info_timeout traitlet to enable restarting slow kernels (3665)
Add custom_display_host config option to override displayed URL (3668)
Add /metrics endpoint for Prometheus Metrics (3490)
Update to MathJax 2.7.4 (3751)
Update to jQuery 3.3 (3655)
Update marked to 0.4 (3686)

Fixing problems:

Don’t duplicate token in displayed URL (3656)
Clarify displayed URL when listening on all interfaces (3703)
Don’t trash non-empty directories on Windows (3673)
Include LICENSE file in wheels (3671)
Don’t show “0 active kernels” when starting the notebook (3696)

Testing:

Add find replace test (3630)
Selenium test for deleting all cells (3601)
Make creating a new notebook more robust (3726)

Thanks to the following contributors:

Arovit Narula (arovit)
lucasoshiro (lucasoshiro)
M Pacer (mpacer)
Thomas Kluyver (takluyver)
Todd (toddrme2178)
Yuvi Panda (yuvipanda)

See the 5.6 milestone on GitHub for a complete list of pull requests involved in this release.

5.5.0#

New features:

The files list now shows file sizes (3539)
Add a quit button in the dashboard (3004)
Display hostname in the terminal when running remotely (3356, 3593)
Add slides exportation/download to the menu (3287)
Add any extra installed nbconvert exporters to the “Download as” menu (3323)
Editor: warning when overwriting a file that is modified on disk (2783)
Display a warning message if cookies are not enabled (3511)
Basic __version__ reporting for extensions (3541)
Add NotebookApp.terminals_enabled config option (3478)
Make buffer time between last modified on disk and last modified on last save configurable (3273)
Allow binding custom shortcuts for ‘close and halt’ (3314)
Add description for ‘Trusted’ notification (3386)
Add settings['activity_sources'] (3401)
Add an output_updated.OutputArea event (3560)

Fixing problems:

Fixes to improve web accessibility (3507)
Fixed color contrast issue in tree.less (3336)
Allow cancelling upload of large files (3373)
Don’t clear login cookie on requests without cookie (3380)
Don’t trash files on different device to home dir on Linux (3304)
Clear waiting asterisks when restarting kernel (3494)
Fix output prompt when execution_count missing (3236)
Make the ‘changed on disk’ dialog work when displayed twice (3589)
Fix going back to root directory with history in notebook list (3411)
Allow defining keyboard shortcuts for missing actions (3561)
Prevent default on pageup/pagedown when completer is active (3500)
Prevent default event handling on new terminal (3497)
ConfigManager should not write out default values found in the .d directory (3485)
Fix leak of iopub object in activity monitoring (3424)
Javascript lint in notebooklist.js (3409)
Some Javascript syntax fixes (3294)
Convert native for loop to Array.forEach() (3477)
Disable cache when downloading nbconvert output (3484)
Add missing digestmod arg to HMAC (3399)
Log OSErrors failing to create less-critical files during startup (3384)
Use powershell on Windows (3379)
API spec improvements, API handler improvements (3368)
Set notebook to dirty state after change to kernel metadata (3350)
Use CSP header to treat served files as belonging to a separate origin (3341)
Don’t install gettext into builtins (3330)
Add missing import _ (3316, 3326)
Write notebook.json file atomically (3305)
Fix clicking with modifiers, page title updates (3282)
Upgrade jQuery to version 2.2 (3428)
Upgrade xterm.js to 3.1.0 (3189)
Upgrade moment.js to 2.19.3 (3562)
Upgrade CodeMirror to 5.35 (3372)
“Require” pyzmq>=17 (3586)

Documentation:

Documentation updates and organisation (3584)
Add section in docs about privacy (3571)
Add explanation on how to change the type of a cell to Markdown (3377)
Update docs with confd implementation details (3520)
Add more information for where jupyter_notebook_config.py is located (3346)
Document options to enable nbextensions in specific sections (3525)
jQuery attribute selector value MUST be surrounded by quotes (3527)
Do not execute special notebooks with nbsphinx (3360)
Other minor fixes in 3288, 3528, 3293, 3367

Testing:

Testing with Selenium & Sauce labs (3321)
Selenium utils + markdown rendering tests (3458)
Convert insert cell tests to Selenium (3508)
Convert prompt numbers tests to Selenium (3554)
Convert delete cells tests to Selenium (3465)
Convert undelete cell tests to Selenium (3475)
More selenium testing utilities (3412)
Only check links when build is trigger by Travis Cron job (3493)
Fix Appveyor build errors (3430)
Undo patches in teardown before attempting to delete files (3459)
Get tests running with tornado 5 (3398)
Unpin ipykernel version on Travis (3223)

Thanks to the following contributors:

Arovit Narula (arovit)
Ashley Teoh (ashleytqy)
Nicholas Bollweg (bollwyvl)
Alex Rothberg (cancan101)
Celina Kilcrease (ckilcrease)
dabuside (dabuside)
Damian Avila (damianavila)
Dana Lee (danagilliann)
Dave Hirschfeld (dhirschfeld)
Heng GAO (ehengao)
Leo Gallucci (elgalu)
Evan Van Dam (evandam)
forbxy (forbxy)
Grant Nestor (gnestor)
Ethan T. Hendrix (hendrixet)
Miro Hrončok (hroncok)
Paul Ivanov (ivanov)
Darío Hereñú (kant)
Kevin Bates (kevin-bates)
Maarten Breddels (maartenbreddels)
Michael Droettboom (mdboom)
Min RK (minrk)
M Pacer (mpacer)
Peter Parente (parente)
Paul Masson (paulmasson)
Philipp Rudiger (philippjfr)
Mac Knight (Shels1909)
Hisham Elsheshtawy (Sheshtawy)
Simon Biggs (SimonBiggs)
Sunil Hari (@sunilhari)
Thomas Kluyver (takluyver)
Tim Klever (tklever)
Gabriel Ruiz (unnamedplay-r)
Vaibhav Sagar (vaibhavsagar)
William Hosford (whosford)
Hong (xuhdev)

See the 5.5 milestone on GitHub for a complete list of pull requests involved in this release.

5.4.1#

A security release to fix CVE-2018-8768.

Thanks to Alex for identifying this bug, and Jonathan Kamens and Scott Sanderson at Quantopian for verifying it and bringing it to our attention.

5.4.0#

Fix creating files and folders after navigating directories in the dashboard (3264).
Enable printing notebooks in colour, removing the CSS that made everything black and white (3212).
Limit the completion options displayed in the notebook to 1000, to avoid performance issues with very long lists (3195).
Accessibility improvements in tree.html (3271).
Added alt-text to the kernel logo image in the notebook UI (3228).
Added a test on Travis CI to flag if symlinks are accidentally introduced in the future. This should prevent the issue that necessitated release-5.3.1{.interpreted-text role=”ref”} (3227).
Use lowercase letters for random IDs generated in our Javascript (3264).
Removed duplicate code setting TextCell.notebook (3256).

Thanks to the following contributors:

Alex Soderman (asoderman)
Matthias Bussonnier (Carreau)
Min RK (minrk)
Nitesh Sawant (ns23)
Thomas Kluyver (takluyver)
Yuvi Panda (yuvipanda)

See the 5.4 milestone on GitHub for a complete list of pull requests involved in this release.

5.3.1#

Replaced a symlink in the repository with a copy, to fix issues installing on Windows (3220).

5.3.0#

This release introduces a couple noteable improvements, such as terminal support for Windows and support for OS trash (files deleted from the notebook dashboard are moved to the OS trash vs. deleted permanently).

Add support for terminals on windows (3087).
Add a “restart and run all” button to the toolbar (2965).
Send files to os trash mechanism on delete (1968).
Allow programmatic copy to clipboard (3088).
Use DOM History API for navigating between directories in the file browser (3115).
Add translated files to folder(docs-translations) (3065).
Allow non empty dirs to be deleted (3108).
Set cookie on base_url (2959).
Allow token-authenticated requests cross-origin by default (2920).
Change cull_idle_timeout_minimum to 1 from 300 (2910).
Config option to shut down server after n seconds with no kernels (2963).
Display a “close” button on load notebook error (3176).
Add action to command pallette to run CodeMirror’s “indentAuto” on selection (3175).
Add option to specify extra services (3158).
Warn_bad_name should not use global name (3160).
Avoid overflow of hidden form (3148).
Fix shutdown trans loss (3147).
Find available kernelspecs more efficiently (3136).
Don’t try to translate missing help strings (3122).
Frontend/extension-config: allow default json files in a .d directory (3116).
Use [requirejs]{.title-ref} vs. [require]{.title-ref} (3097).
Fixes some ui bugs in firefox #3044 (3058).
Compare non-specific language code when choosing to use arabic numerals (3055).
Fix save-script deprecation (3053).
Include moment locales in package_data (3051).
Fix moment locale loading in bidi support (3048).
Tornado 5: periodiccallback loop arg will be removed (3034).
Use [/files]{.title-ref} prefix for pdf-like files (3031).
Add folder for document translation (3022).
When login-in via token, let a chance for user to set the password (3008).
Switch to jupyter_core implementation of ensure_dir_exists (3002).
Send http shutdown request on ‘stop’ subcommand (3000).
Work on loading ui translations (2969).
Fix ansi inverse (2967).
Add send2trash to requirements for building docs (2964).
I18n readme.md improvement (2962).
Add ‘reason’ field to json error responses (2958).
Add some padding for stream outputs (3194).
Always use setuptools in setup.py (3206).
Fix clearing cookies on logout when base_url is configured (3207).

Thanks to the following contributors:

bacboc (bacboc)
Steven Silvester (blink1073)
Matthias Bussonnier (Carreau)
ChungJooHo (ChungJooHo)
edida (edida)
Francesco Franchina (ferdas)
forbxy (forbxy)
Grant Nestor (gnestor)
Josh Barnes (jcb91)
JocelynDelalande (JocelynDelalande)
Karthik Balakrishnan (karthikb351)
Kevin Bates (kevin-bates)
Kirit Thadaka (kirit93)
Lilian Besson (Naereen)
Maarten Breddels (maartenbreddels)
Madhu94 (Madhu94)
Matthias Geier (mgeier)
Michael Heilman (mheilman)
Min RK (minrk)
PHaeJin (PHaeJin)
Sukneet (Sukneet)
Thomas Kluyver (takluyver)

See the 5.3 milestone on GitHub for a complete list of pull requests involved in this release.

5.2.1#

Fix invisible CodeMirror cursor at specific browser zoom levels (2983).
Fix nbconvert handler causing broken export to PDF (2981).
Fix the prompt_area argument of the output area constructor. (2961).
Handle a compound extension in new_untitled (2949).
Allow disabling offline message buffering (2916).

Thanks to the following contributors:

Steven Silvester (blink1073)
Grant Nestor (gnestor)
Jason Grout (jasongrout)
Min RK (minrk)
M Pacer (mpacer)

See the 5.2.1 milestone on GitHub for a complete list of pull requests involved in this release.

5.2.0#

Allow setting token via jupyter_token env (2921).
Fix some errors caused by raising 403 in get_current_user (2919).
Register contents_manager.files_handler_class directly (2917).
Update viewable_extensions (2913).
Show edit shortcuts modal after shortcuts modal is hidden (2912).
Improve edit/view behavior (2911).
The root directory of the notebook server should never be hidden (2907).
Fix notebook require config to match tools/build-main (2888).
Give page constructor default arguments (2887).
Fix codemirror.less to match codemirror’s expected padding layout (2880).
Add x-xsrftoken to access-control-allow-headers (2876).
Buffer messages when websocket connection is interrupted (2871).
Load locale dynamically only when not en-us (2866).
Changed key strength to 2048 bits (2861).
Resync jsversion with python version (2860).
Allow copy operation on modified, read-only notebook (2854).
Update error handling on apihandlers (2853).
Test python 3.6 on travis, drop 3.3 (2852).
Avoid base64-literals in image tests (2851).
Upgrade xterm.js to 2.9.2 (2849).
Changed all python variables named file to file_name to not override built_in file (2830).
Add more doc tests (2823).
Typos fix (2815).
Rename and update license [ci skip] (2810).
Travis builds doc (2808).
Pull request i18n (2804).
Factor out output_prompt_function, as is done with input prompt (2774).
Use rfc5987 encoding for filenames (2767).
Added path to the resources metadata, the same as in from_filename(…) in nbconvert.exporters.py (2753).
Make “extrakeys” consistent for notebook and editor (2745).
Bidi support (2357).

Special thanks to samarsultan and the Arabic Competence and Globalization Center Team at IBM Egypt for adding RTL (right-to-left) support to the notebook!

See the 5.2 milestone on GitHub for a complete list of issues and pull requests involved in this release.

5.1.0#

Preliminary i18n implementation (2140).
Expose URL with auth token in notebook UI (2666).
Fix search background style (2387).
List running notebooks without requiring --allow-root (2421).
Allow session of type other than notebook (2559).
Fix search background style (2387).
Fix some Markdown styling issues (2571), (2691) and (2534).
Remove keymaps that conflict with non-English keyboards (2535).
Add session-specific favicons (notebook, terminal, file) (2452).
Add /api/shutdown handler (2507).
Include metadata when copying a cell (2349).
Stop notebook server from command line (2388).
Improve “View” and “Edit” file handling in dashboard (2449) and (2402).
Provide a promise to replace use of the app_initialized.NotebookApp event (2710).
Fix disabled collapse/expand output button (2681).
Cull idle kernels using --MappingKernelManager.cull_idle_timeout (2215).
Allow read-only notebooks to be trusted (2718).

See the 5.1 milestone on GitHub for a complete list of issues and pull requests involved in this release.

5.0.0#

This is the first major release of the Jupyter Notebook since version 4.0 was created by the “Big Split” of IPython and Jupyter.

We encourage users to start trying JupyterLab in preparation for a future transition.

We have merged more than 300 pull requests since 4.0. Some of the major user-facing changes are described here.

File sorting in the dashboard#

Files in the dashboard may now be sorted by last modified date or name (943):

Cell tags#

There is a new cell toolbar for adding cell tags (2048):

Cell tags are a lightweight way to customise the behaviour of tools working with notebooks; we’re working on building support for them into tools like nbconvert and nbval. To start using tags, select Tags in the View > Cell Toolbar menu in a notebook.

The UI for editing cell tags is basic for now; we hope to improve it in future releases.

Table style#

The default styling for tables in the notebook has been updated (1776).

Customise keyboard shortcuts#

You can now edit keyboard shortcuts for Command Mode within the UI (1347):

See the Help > Edit Keyboard Shortcuts menu item and follow the instructions.

Other additions#

You can copy and paste cells between notebooks, using Ctrl-C{.interpreted-text role=”kbd”} and Ctrl-V{.interpreted-text role=”kbd”} (Cmd-C{.interpreted-text role=”kbd”} and Cmd-V{.interpreted-text role=”kbd”} on Mac).
It’s easier to configure a password for the notebook with the new jupyter notebook password command (2007).
The file list can now be ordered by last modified or by name (943).
Markdown cells now support attachments. Simply drag and drop an image from your desktop to a markdown cell to add it. Unlike relative links that you enter manually, attachments are embedded in the notebook itself. An unreferenced attachment will be automatically scrubbed from the notebook on save (621).
Undoing cell deletion now supports undeleting multiple cells. Cells may not be in the same order as before their deletion, depending on the actions you did on the meantime, but this should should help reduce the impact of accidentally deleting code.
The file browser now has Edit and View buttons.
The file browser now supports moving multiple files at once (1088).
The Notebook will refuse to run as root unless the --allow-root flag is given (1115).
Keyboard shortcuts are now declarative (1234).
Toggling line numbers can now affect all cells (1312).
Add more visible Trusted and Untrusted notifications (1658).
The favicon (browser shortcut icon) now changes to indicate when the kernel is busy (1837).
Header and toolbar visibility is now persisted in nbconfig and across sessions (1769).
Load server extensions with ConfigManager so that merge happens recursively, unlike normal config values, to make it load more consistently with frontend extensions(2108).
The notebook server now supports the bundler API from the jupyter_cms incubator project (1579).
The notebook server now provides information about kernel activity in its kernel resource API (1827).

Remember that upgrading notebook only affects the user interface. Upgrading kernels and libraries may also provide new features, better stability and integration with the notebook interface.

4.4.0#

Allow override of output callbacks to redirect output messages. This is used to implement the ipywidgets Output widget, for example.
Fix an async bug in message handling by allowing comm message handlers to return a promise which halts message processing until the promise resolves.

See the 4.4 milestone on GitHub for a complete list of issues and pull requests involved in this release.

4.3.2#

4.3.2 is a patch release with a bug fix for CodeMirror and improved handling of the “editable” cell metadata field.

Monkey-patch for CodeMirror that resolves #2037 without breaking #1967
Read-only ("editable": false) cells can be executed but cannot be split, merged, or deleted

See the 4.3.2 milestone on GitHub for a complete list of issues and pull requests involved in this release.

4.3.1#

4.3.1 is a patch release with a security patch, a couple bug fixes, and improvements to the newly-released token authentication.

Security fix:

CVE-2016-9971. Fix CSRF vulnerability, where malicious forms could create untitled files and start kernels (no remote execution or modification of existing files) for users of certain browsers (Firefox, Internet Explorer / Edge). All previous notebook releases are affected.

Bug fixes:

Fix carriage return handling
Make the font size more robust against fickle browsers
Ignore resize events that bubbled up and didn’t come from window
Add Authorization to allowed CORS headers
Downgrade CodeMirror to 5.16 while we figure out issues in Safari

Other improvements:

Better docs for token-based authentication
Further highlight token info in log output when autogenerated

See the 4.3.1 milestone on GitHub for a complete list of issues and pull requests involved in this release.

4.3.0#

4.3 is a minor release with many bug fixes and improvements. The biggest user-facing change is the addition of token authentication, which is enabled by default. A token is generated and used when your browser is opened automatically, so you shouldn’t have to enter anything in the default circumstances. If you see a login page (e.g. by switching browsers, or launching on a new port with --no-browser), you get a login URL with the token from the command jupyter notebook list, which you can paste into your browser.

Highlights:

API for creating mime-type based renderer extensions using OutputArea.register_mime_type and Notebook.render_cell_output methods. See mimerender-cookiecutter for reference implementations and cookiecutter.
Enable token authentication by default. See server_security{.interpreted-text role=”ref”} for more details.
Update security docs to reflect new signature system
Switched from term.js to xterm.js

Bug fixes:

Ensure variable is set if exc_info is falsey
Catch and log handler exceptions in events.trigger
Add debug log for static file paths
Don’t check origin on token-authenticated requests
Remove leftover print statement
Fix highlighting of Python code blocks
json_errors should be outermost decorator on API handlers
Fix remove old nbserver info files
Fix notebook mime type on download links
Fix carriage symbol behavior
Fix terminal styles
Update dead links in docs
If kernel is broken, start a new session
Include cross-origin check when allowing login URL redirects

Other improvements:

Allow JSON output data with mime type application/*+json
Allow kernelspecs to have spaces in them for backward compat
Allow websocket connections from scripts
Allow None for post_save_hook
Upgrade CodeMirror to 5.21
Upgrade xterm to 2.1.0
Docs for using comms
Set dirty flag when output arrives
Set ws-url data attribute when accessing a notebook terminal
Add base aliases for nbextensions
Include @ operator in CodeMirror IPython mode
Extend mathjax_url docstring
Load nbextension in predictable order
Improve the error messages for nbextensions
Include cross-origin check when allowing login URL redirects

See the 4.3 milestone on GitHub for a complete list of issues and pull requests involved in this release.

4.2.3#

4.2.3 is a small bugfix release on 4.2.

Highlights:

Fix regression in 4.2.2 that delayed loading custom.js until after notebook_loaded and app_initialized events have fired.
Fix some outdated docs and links.

4.2.2#

4.2.2 is a small bugfix release on 4.2, with an important security fix. All users are strongly encouraged to upgrade to 4.2.2.

Highlights:

Security fix: CVE-2016-6524, where untrusted latex output could be added to the page in a way that could execute javascript.
Fix missing POST in OPTIONS responses.
Fix for downloading non-ascii filenames.
Avoid clobbering ssl_options, so that users can specify more detailed SSL configuration.
Fix inverted load order in nbconfig, so user config has highest priority.
Improved error messages here and there.

4.2.1#

4.2.1 is a small bugfix release on 4.2. Highlights:

Compatibility fixes for some versions of ipywidgets
Fix for ignored CSS on Windows
Fix specifying destination when installing nbextensions

4.2.0#

Release 4.2 adds a new API for enabling and installing extensions. Extensions can now be enabled at the system-level, rather than just per-user. An API is defined for installing directly from a Python package, as well.

Highlighted changes:

Upgrade MathJax to 2.6 to fix vertical-bar appearing on some equations.
Restore ability for notebook directory to be root (4.1 regression)
Large outputs are now throttled, reducing the ability of output floods to kill the browser.
Fix the notebook ignoring cell executions while a kernel is starting by queueing the messages.
Fix handling of url prefixes (e.g. JupyterHub) in terminal and edit pages.
Support nested SVGs in output.

And various other fixes and improvements.

4.1.0#

Bug fixes:

Properly reap zombie subprocesses
Fix cross-origin problems
Fix double-escaping of the base URL prefix
Handle invalid unicode filenames more gracefully
Fix ANSI color-processing
Send keepalive messages for web terminals
Fix bugs in the notebook tour

UI changes:

Moved the cell toolbar selector into the View menu. Added a button that triggers a “hint” animation to the main toolbar so users can find the new location. (Click here to see a screencast )
Added Restart & Run All to the Kernel menu. Users can also bind it to a keyboard shortcut on action restart-kernel-and-run-all-cells.
Added multiple-cell selection. Users press Shift-Up/Down or Shift-K/J to extend selection in command mode. Various actions such as cut/copy/paste, execute, and cell type conversions apply to all selected cells.
Added a command palette for executing Jupyter actions by name. Users press Cmd/Ctrl-Shift-P or click the new command palette icon on the toolbar.
Added a Find and Replace dialog to the Edit menu. Users can also press F in command mode to show the dialog.

Other improvements:

Custom KernelManager methods can be Tornado coroutines, allowing async operations.
Make clearing output optional when rewriting input with set_next_input(replace=True).
Added support for TLS client authentication via --NotebookApp.client-ca.
Added tags to jupyter/notebook releases on DockerHub. latest continues to track the master branch.

See the 4.1 milestone on GitHub for a complete list of issues and pull requests handled.

4.0.x#

4.0.6#

fix installation of mathjax support files
fix some double-escape regressions in 4.0.5
fix a couple of cases where errors could prevent opening a notebook

4.0.5#

Security fixes for maliciously crafted files.

CVE-2015-6938: malicious filenames
CVE-2015-7337: malicious binary files in text editor.

Thanks to Jonathan Kamens at Quantopian and Juan Broullón for the reports.

4.0.4#

Fix inclusion of mathjax-safe extension

4.0.2#

Fix launching the notebook on Windows
Fix the path searched for frontend config

4.0.0#

First release of the notebook as a standalone package.