Exception-Safe Code 53 class Widget { private: int i{ 0 }; std::string s{}; Resource* pr{}; // May be nullptr public: // … // … }; 1 2 3 4 5 6 7 8 9 10 11 12 13 14 Resource* pr{}; // May be nullptr public: // … // Copy constructor Widget( Widget const& w ) : i { w.i } , s { w.s } { if( w.pr ) pr = new Resource( *w.pr ); } Resource* pr{}; // May be nullptr public: // … // Copy constructor Widget( Widget const& w ) : i { w.i } , s { w.s } { if( w.pr ) pr = new Resource( *w.pr ); }

KdpdDX+zV6AGsmo4eIGvt8FP4z/VWMLmw5Iioj5KsTomI1CTxgqCKUl+Uku5PEcdEH8OP6jWH9fx0z/wAW39dT+jb4Vg/P/asb6PR3UwTHXHGzr2EUPRt4JdjZVFyaYpvxM2rqBNLGvNUWFD0QqDFP9iHUOk080vPc5jUHo1+FY30Ro+iOjFyX15Mo9eqjLbVFGT+3gy version (PR #5933) • Adjust skip decorators to avoid remaining dependency on nose (PR #5932) • Ensure that cell ids persist after save (PR #5928) • Add reconnection to Gateway (form nb2kg) (PR #5924) #5924) • Fix some typos (PR #5917) • Handle TrashPermissionError, now that it exists (PR #5894) Thank you to all the contributors: • @kevin-bates • @mishaschwartz • @oyvsyo • @user202729 • @stefanor

with tornado 6 (PR #4392, PR #4449). • Fix opening integer filedescriptor during startup on Python 2 (PR #4349) • Fix compatibility with asynchronous KernelManager.restart_kernel methods (PR #4412) 5.2 the list_running_servers() function attempts to parse HTML files as JSON, and consequently crashes (PR #4284). 5.3 5.7.3 5.7.3 contains one security improvement and one security fix: 61 Jupyter Notebook browser with a local file which redirects to the server address including the authentication token (PR #4260). This prevents another logged-in user from stealing the token from command line arguments and

with tornado 6 (PR #4392, PR #4449). • Fix opening integer filedescriptor during startup on Python 2 (PR #4349) • Fix compatibility with asynchronous KernelManager.restart_kernel methods (PR #4412) 61 the list_running_servers() function attempts to parse HTML files as JSON, and consequently crashes (PR #4284). 5.4 5.7.3 5.7.3 contains one security improvement and one security fix: • Launch the browser browser with a local file which redirects to the server address including the authentication token (PR #4260). This prevents another logged-in user from stealing the token from command line arguments and

the list_running_servers() function attempts to parse HTML files as JSON, and consequently crashes (PR #4284). 5.2 5.7.3 5.7.3 contains one security improvement and one security fix: • Launch the browser browser with a local file which redirects to the server address including the authentication token (PR #4260). This prevents another logged-in user from stealing the token from command line arguments and • Upgrade bootstrap to 3.4, fixing an XSS vulnerability, which has been assigned CVE-2018-14041 (PR #4271). 61 Jupyter Notebook Documentation, Release 5.7.4 5.3 5.7.2 5.7.2 contains a security fix

browser with a local file which redirects to the server address including the authentication token (PR #4260). This prevents another logged-in user from stealing the token from command line arguments and • Upgrade bootstrap to 3.4, fixing an XSS vulnerability, which has been assigned CVE-2018-14041 (PR #4271). 5.2 5.7.2 5.7.2 contains a security fix preventing malicious directory names from being able • Update to CodeMirror to 5.37, which includes f-string sytax for Python 3.6 (PR #3816) • Update jquery-ui to 1.12 (PR #3836) • Check Host header to more securely protect localhost deployments from

• Update to CodeMirror to 5.37, which includes f-string sytax for Python 3.6 (PR #3816) • Update jquery-ui to 1.12 (PR #3836) • Check Host header to more securely protect localhost deployments from known vulnerability (PR #3766). Use .NotebookApp.allow_remote_access and .NotebookApp.local_hostnames to configure access. • Allow access-control-allow-headers to be overridden (PR #3886) • Allow configuring max_body_size and max_buffer_size (PR #3829) • Allow configuring get_secure_cookie keyword-args (PR #3778) • Respect nbconvert entrypoints as sources for exporters (PR #3879) • Include translation sources

• Update to CodeMirror to 5.37, which includes f-string sytax for Python 3.6 (PR #3816) • Update jquery-ui to 1.12 (PR #3836) • Check Host header to more securely protect localhost deployments from known vulnerability (PR #3766). Use .NotebookApp.allow_remote_access and .NotebookApp.local_hostnames to configure access. • Allow access-control-allow-headers to be overridden (PR #3886) • Allow configuring max_body_size and max_buffer_size (PR #3829) • Allow configuring get_secure_cookie keyword-args (PR #3778) • Respect nbconvert entrypoints as sources for exporters (PR #3879) • Include translation sources

• Update to CodeMirror to 5.37, which includes f-string sytax for Python 3.6 (PR #3816) • Update jquery-ui to 1.12 (PR #3836) 55 Jupyter Notebook Documentation, Release 5.7.2 • Check Host header to known vulnerability (PR #3766). Use .NotebookApp.allow_remote_access and .NotebookApp.local_hostnames to configure access. • Allow access-control-allow-headers to be overridden (PR #3886) • Allow configuring max_body_size and max_buffer_size (PR #3829) • Allow configuring get_secure_cookie keyword-args (PR #3778) • Respect nbconvert entrypoints as sources for exporters (PR #3879) • Include translation sources

PRs Increase minimum tornado version (PR #5933 [https://github.com/jupyter/notebook/pull/5933/]) Adjust skip decorators to avoid remaining dependency on nose (PR #5932 [https://github.com/jupyter/notebook/pull/5932/]) after save (PR #5928 [https://github.com/jupyter/notebook/pull/5928/]) Add reconnection to Gateway (form nb2kg) (PR #5924 [https://github.com/jupyter/notebook/pull/5924/]) Fix some typos (PR #5917 [https://github [https://github.com/jupyter/notebook/pull/5917/]) Handle TrashPermissionError, now that it exists (PR #5894 [https://github.com/jupyter/notebook/pull/5894/]) Thank you to all the contributors: @kevin-bates