Skip to content

Bump mistune from 3.3.2 to 3.3.3#8282

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/mistune-3.3.3
Open

Bump mistune from 3.3.2 to 3.3.3#8282
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/mistune-3.3.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor

Bumps mistune from 3.3.2 to 3.3.3.

Release notes

Sourced from mistune's releases.

v3.3.3

   🐞 Bug Fixes

   🏎 Performance

    View changes on GitHub
Changelog

Sourced from mistune's changelog.

Version 3.3.3

Released on Jul 9, 2026

  • Limit deeply nested emphasis and image parsing to avoid RecursionError.
  • Fix repeated link suffix and unclosed formatting marker performance issues.
  • Fix unclosed inline spoiler performance issues.
  • Avoid recursive parsing for adjacent ruby tokens.
  • Speed up footnote reference indexing.
Commits
  • 060f73a chore: release 3.3.3
  • ae7e9d5 perf: improve for footnotes, ruby and spoiler
  • c2228a2 perf: improve performance for math and formatting plugins
  • e001d51 perf: improve link label parsing performance
  • cca5ee6 fix: add image max depth
  • 0938fb7 fix: add max_emphasis_depth
  • 9946c92 tests: update dealine time for pypy
  • 4009f67 fix: use SAFE_PROTOCOLS instead of HARMFUL_PROTOCOLS
  • 3025549 Merge pull request #462 from Sanjays2402/fix/markdown-renderer-escape-emphasis
  • b042996 fix: escape literal emphasis markers in MarkdownRenderer
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [mistune](https://github.com/lepture/mistune) from 3.3.2 to 3.3.3.
- [Release notes](https://github.com/lepture/mistune/releases)
- [Changelog](https://github.com/lepture/mistune/blob/main/docs/changes.rst)
- [Commits](lepture/mistune@v3.3.2...v3.3.3)

---
updated-dependencies:
- dependency-name: mistune
  dependency-version: 3.3.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jul 10, 2026
@dependabot dependabot Bot requested a review from a team as a code owner July 10, 2026 04:43
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jul 10, 2026
@codecov

codecov Bot commented Jul 10, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 71.12%. Comparing base (17f088b) to head (a32355f).

Additional details and impacted files
@@           Coverage Diff           @@
##             main    #8282   +/-   ##
=======================================
  Coverage   71.12%   71.12%           
=======================================
  Files         305      305           
  Lines       32001    32001           
=======================================
  Hits        22760    22760           
  Misses       9241     9241           

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants