Bump jupyterhub version for security patches

https://blog.jupyter.org/open-redirect-vulnerability-in-jupyter-jupyterhub-adf43583f1e4
2025-12-18 21:54:05 +08:00 · 2019-03-30 12:56:37 +05:30
parent 98090098ca
commit d9a4e64dfa
2 changed files with 8 additions and 8 deletions
--- a/integration-tests/test_extensions.py
+++ b/integration-tests/test_extensions.py
@@ -13,9 +13,9 @@ def test_serverextensions():
    ], stderr=subprocess.PIPE)

    extensions = [
-        'jupyterlab 0.35.3',
+        'jupyterlab 0.35.4',
        'nbgitpuller 0.6.1',
-        'nteract_on_jupyter 1.9.12',
+        'nteract_on_jupyter 2.0.7',
        'nbresuse '
    ]

--- a/tljh/installer.py
+++ b/tljh/installer.py
@@ -189,13 +189,13 @@ def ensure_jupyterhub_package(prefix):
    and conda packages!
    """
    conda.ensure_pip_packages(prefix, [
-        'jupyterhub==0.9.4',
+        'jupyterhub==0.9.5',
        'jupyterhub-dummyauthenticator==0.3.1',
        'jupyterhub-systemdspawner==0.11',
        'jupyterhub-firstuseauthenticator==0.12',
        'jupyterhub-nativeauthenticator==0.0.4',
        'jupyterhub-ldapauthenticator==1.2.2',
-        'oauthenticator==0.8.0'
+        'oauthenticator==0.8.1'
    ])
    traefik.ensure_traefik_binary(prefix)

@@ -242,11 +242,11 @@ def ensure_user_environment(user_requirements_txt_file):

    conda.ensure_pip_packages(USER_ENV_PREFIX, [
        # JupyterHub + notebook package are base requirements for user environment
-        'jupyterhub==0.9.4',
-        'notebook==5.7.0',
+        'jupyterhub==0.9.5',
+        'notebook==5.7.7',
        # Install additional notebook frontends!
-        'jupyterlab==0.35.3',
-        'nteract-on-jupyter==1.9.12',
+        'jupyterlab==0.35.4',
+        'nteract-on-jupyter==2.0.7',
        # nbgitpuller for easily pulling in Git repositories
        'nbgitpuller==0.6.1',
        # nbresuse to show people how much RAM they are using