Bump jupytext from 1.19.1 to 1.19.3

[dependabot]

Bumps jupytext from 1.19.1 to 1.19.3.

Release notes

Sourced from jupytext's releases.

Version 1.19.3

Fixed

• The Jupytext CLI issues a warning when a notebook is not trusted. Also, trust is preserved when empty outputs are added (follow-up on #1505)

Changed

• The dependabot config has been updated to correctly bump extension packages, now allowing only production updates and ignoring dev dependencies (#1532). Thanks to Mahendra Paipuri for this PR!
• Removed deprecated stylelint packages (stylelint-config-prettier and stylelint-prettier) from the JupyterLab extension dependencies (#1530)
• We have removed Python 3.9 testing from the CI (Python 3.9 reached EOL in October 2025)

Version 1.19.2

Fixed

• Trusted notebooks remain trusted after jupytext --sync (#1505)
• We have fixed the homepage link in package.json. Thanks to Michał Krassowski for making this PR (#1494)
• Thanks to Brigitta Sipőcz for fixing a broken link in our CLI (#1428)
• The --quiet flag now suppresses the creating missing directory warning when writing to a path that includes a prefix (#1533)

Changed

• The CI workflow has been restructured to maximize parallelization. All test suites (pip, conda, UI) and the build step now run concurrently after pre-commit checks, instead of sequentially, reducing CI times (#1527)
• We have skipped the tests that involve jupyterfs on Python 3.12+ as they started failing on the CI with no obvious way to fix them (#1509)
• We have changed the configuration of Dependabot to get grouped dependency updates for our JupyterLab extension.
• We have merged a series of Dependabot security updates: #1516, #1517, #1519, #1520, #1522, #1524

Changelog

Sourced from jupytext's changelog.

1.19.3 (2026-05-17)

Fixed

• The Jupytext CLI issues a warning when a notebook is not trusted. Also, trust is preserved when empty outputs are added (follow-up on #1505)

Changed

• The dependabot config has been updated to correctly bump extension packages, now allowing only production updates and ignoring dev dependencies (#1532). Thanks to Mahendra Paipuri for this PR!
• Removed deprecated stylelint packages (stylelint-config-prettier and stylelint-prettier) from the JupyterLab extension dependencies (#1530)
• We have removed Python 3.9 testing from the CI (Python 3.9 reached EOL in October 2025)

1.19.2 (2026-05-10)

Fixed

• Trusted notebooks remain trusted after jupytext --sync (#1505)
• We have fixed the homepage link in package.json. Thanks to Michał Krassowski for making this PR (#1494)
• Thanks to Brigitta Sipőcz for fixing a broken link in our CLI (#1428)
• The --quiet flag now suppresses the creating missing directory warning when writing to a path that includes a prefix (#1533)

Changed

• The CI workflow has been restructured to maximize parallelization. All test suites (pip, conda, UI) and the build step now run concurrently after pre-commit checks, instead of sequentially, reducing CI times (#1527)
• We have skipped the tests that involve jupyterfs on Python 3.12+ as they started failing on the CI with no obvious way to fix them (#1509)
• We have changed the configuration of Dependabot to get grouped dependency updates for our JupyterLab extension.
• We have merged a series of Dependabot security updates: #1516, #1517, #1519, #1520, #1522, #1524

Commits

• 48fdfd8 Fix: Adding cells with no outputs preserves trust status (#1531)
• 4706e65 chore: Update dependabot config (#1532)
• 2ec5404 build (deps): Remove deprecated stylelint packages (#1530)
• 309f97f Version 1.19.2 (#1529)
• e4dded4 build(deps-dev): bump typescript from 5.9.3 to 6.0.3 in /jupyterlab/packages/...
• 2c262e5 Fix: --quiet also suppresses warning for directory creation (#1526)
• 0bfcec1 build(deps): bump fast-uri from 3.1.0 to 3.1.2 in /jupyterlab (#1524)
• 611e2c0 Explicitly close NotebookNotary signature store (#1528)
• 70b1f20 All tests run after coverage tests have passed (#1527)
• 399e934 Close SQLite database connections of Jupytext-created notaries
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)