Workflow

Mesop

Latest version: v0.14.1

Safety actively analyzes 707375 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 6

0.14.1

This release fixes a security issue. Please upgrade as soon as possible.

What's Changed
* Harden dataclass utils by wwwillchen in https://github.com/google/mesop/pull/1171
* Bump v0.14.1 by wwwillchen in https://github.com/google/mesop/pull/1173


**Full Changelog**: https://github.com/google/mesop/compare/v0.14.0...v0.14.1

0.14.0

Not secure
What's Changed
* Fix broken demo and security links in README.md by zsais in https://github.com/google/mesop/pull/1144
* Fix missing type hints for content_component by richard-to in https://github.com/google/mesop/pull/1146
* Fix typo for MESOP_WEBSOCKETS_ENABLED docs by wwwillchen in https://github.com/google/mesop/pull/1151
* Bump the npm_and_yarn group with 2 updates by dependabot in https://github.com/google/mesop/pull/1148
* Add security policy for demos by wwwillchen in https://github.com/google/mesop/pull/1156
* Bump mesop version for demo/requirements.txt by wwwillchen in https://github.com/google/mesop/pull/1153
* Bump marked from 15.0.0 to 15.0.1 in the npm_and_yarn group by dependabot in https://github.com/google/mesop/pull/1154
* Add Colab workaround to web components troubleshooting docs by williamito in https://github.com/google/mesop/pull/1158
* Update browser for karma targets by wwwillchen in https://github.com/google/mesop/pull/1164
* Named slots / Nested slots by richard-to in https://github.com/google/mesop/pull/1145
* Bump angular to v19 by wwwillchen in https://github.com/google/mesop/pull/1155
* Bump to v0.14.0 by wwwillchen in https://github.com/google/mesop/pull/1168

New Contributors
* zsais made their first contribution in https://github.com/google/mesop/pull/1144
* williamito made their first contribution in https://github.com/google/mesop/pull/1158

**Full Changelog**: https://github.com/google/mesop/compare/v0.13.0...v0.14.0

0.13.0

Not secure
Summary

- Unships the editor/dev tools (only affects editor/debug mode) due to low usage and inherent limitations with the tooling.
- Fixes a significant perf issue related to components rendering - see 1136 for details

What's Changed
* Skip unnecessary trace render loop in WebSockets mode by wwwillchen in https://github.com/google/mesop/pull/1123
* Remove unused handler code from Runtime/Context by wwwillchen in https://github.com/google/mesop/pull/1122
* Change context import to be absolute in runtime.py by wwwillchen in https://github.com/google/mesop/pull/1124
* Bump aiohttp from 3.10.5 to 3.10.11 in /ai/docbot in the pip group across 1 directory by dependabot in https://github.com/google/mesop/pull/1108
* Bump marked from 14.1.3 to 14.1.4 in the npm_and_yarn group by dependabot in https://github.com/google/mesop/pull/1107
* [Snyk] Fix for 10 vulnerabilities by wwwillchen in https://github.com/google/mesop/pull/1091
* [Snyk] Security upgrade zipp from 3.15.0 to 3.19.1 by wwwillchen in https://github.com/google/mesop/pull/1084
* Fix CI deployments (loosen pip requirements & remove unnecessary pip … by wwwillchen in https://github.com/google/mesop/pull/1127
* Allow blob as a valid origin for img/media by wwwillchen in https://github.com/google/mesop/pull/1131
* Do not render expansion panel description if unused by wwwillchen in https://github.com/google/mesop/pull/1129
* Unship devtools/editor-related code by wwwillchen in https://github.com/google/mesop/pull/1135
* Fixes major memory leak in component renderer by wwwillchen in https://github.com/google/mesop/pull/1136
* Restore hot reload functionality by wwwillchen in https://github.com/google/mesop/pull/1138
* Bump to 0.12.10rc1 by wwwillchen in https://github.com/google/mesop/pull/1139
* Restore hot reload keyboard shortcut by wwwillchen in https://github.com/google/mesop/pull/1140
* 0.13.0rc1 by wwwillchen in https://github.com/google/mesop/pull/1141


**Full Changelog**: https://github.com/google/mesop/compare/v0.12.9...v0.13.0

0.12.9

Not secure
What's Changed
* Add Angular Material Card component by richard-to in https://github.com/google/mesop/pull/1082
* Consistent type hints for Optional by Jemeljanov in https://github.com/google/mesop/pull/1087
* Fix typo in card component doc by richard-to in https://github.com/google/mesop/pull/1090
* Add expansion panel component. by richard-to in https://github.com/google/mesop/pull/1089
* fix card_header.py docstring & remove security announcement by wwwillchen in https://github.com/google/mesop/pull/1095
* Send experiment settings on initial page load by wwwillchen in https://github.com/google/mesop/pull/1093
* Fix clearing query params when navigating by wwwillchen in https://github.com/google/mesop/pull/1097
* Migrate print calls to logging by wwwillchen in https://github.com/google/mesop/pull/1083
* Runs onload handler for browser navigations (backwards and forwards) by wwwillchen in https://github.com/google/mesop/pull/1101
* Bump to v0.12.9 by wwwillchen in https://github.com/google/mesop/pull/1103

New Contributors
* Jemeljanov made their first contribution in https://github.com/google/mesop/pull/1087

**Full Changelog**: https://github.com/google/mesop/compare/v0.12.8...v0.12.9

0.12.8

Not secure
What's Changed
* [Snyk] Security upgrade python from 3.10.14-bullseye to 3.10.15-bullseye by wwwillchen in https://github.com/google/mesop/pull/1047
* [Snyk] Security upgrade python from 3.10.14-bullseye to 3.10.15-bullseye by wwwillchen in https://github.com/google/mesop/pull/1046
* [Snyk] Security upgrade python from 3.10.14-bullseye to 3.10.15-bullseye by wwwillchen in https://github.com/google/mesop/pull/1043
* [Snyk] Security upgrade python from 3.10.14-bullseye to 3.10.15-bullseye by wwwillchen in https://github.com/google/mesop/pull/1049
* [Snyk] Security upgrade python from 3.10.14-bullseye to 3.10.15-bullseye by wwwillchen in https://github.com/google/mesop/pull/1050
* Switch from socket.io to vanilla websockets & fix state updates for websockets by wwwillchen in https://github.com/google/mesop/pull/1048
* Bump the pip group across 2 directories with 3 updates by dependabot in https://github.com/google/mesop/pull/1052
* Bump the npm_and_yarn group with 9 updates by dependabot in https://github.com/google/mesop/pull/1055
* Add option expose static folder by richard-to in https://github.com/google/mesop/pull/989
* Bump the pip group across 3 directories with 1 update by dependabot in https://github.com/google/mesop/pull/1058
* Bump the npm_and_yarn group with 5 updates by dependabot in https://github.com/google/mesop/pull/1059
* Allow custom favicons by richard-to in https://github.com/google/mesop/pull/1062
* Add additional parameters for SecurityPolicy: trusted types and worker src by wwwillchen in https://github.com/google/mesop/pull/1064
* Fix race condition in processing commands (navigate) by wwwillchen in https://github.com/google/mesop/pull/1065
* Fix component renderer: querying web component children by wwwillchen in https://github.com/google/mesop/pull/1066
* Bump to v0.12.8beta1 by wwwillchen in https://github.com/google/mesop/pull/1070
* Fix bug with single select value not showing. by richard-to in https://github.com/google/mesop/pull/1072
* Add content_button equivalent to uploader by richard-to in https://github.com/google/mesop/pull/1074
* Disable component diffing when MESOP_WEBSOCKETS_ENABLED by wwwillchen in https://github.com/google/mesop/pull/1075
* [Snyk] Security upgrade werkzeug from 2.2.3 to 3.0.6 by wwwillchen in https://github.com/google/mesop/pull/1069
* Bump the npm_and_yarn group with 2 updates by dependabot in https://github.com/google/mesop/pull/1063
* Move copy_current_request_context to ensure thread-safety by wwwillchen in https://github.com/google/mesop/pull/1076
* Bump send from 1.0.0 to 1.1.0 in the npm_and_yarn group by dependabot in https://github.com/google/mesop/pull/1077
* [Snyk] Security upgrade werkzeug from 2.2.3 to 3.0.6 by wwwillchen in https://github.com/google/mesop/pull/1078
* Add env var: MESOP_APP_BASE_PATH by wwwillchen in https://github.com/google/mesop/pull/1057
* Bump to 0.12.8 by wwwillchen in https://github.com/google/mesop/pull/1085


**Full Changelog**: https://github.com/google/mesop/compare/v0.12.7...v0.12.8

0.12.7

Not secure
What's Changed
* Add step to check security dashboard on publishing by wwwillchen in https://github.com/google/mesop/pull/1022
* Turn (server) error box into a more standard dialog UI by wwwillchen in https://github.com/google/mesop/pull/1025
* Fix sidenav "escape" key bug by richard-to in https://github.com/google/mesop/pull/1024
* Fix bug where same file could not be reuploaded by richard-to in https://github.com/google/mesop/pull/1032
* Add basic websockets support by wwwillchen in https://github.com/google/mesop/pull/1027
* Fix array proto types for select.ts by wwwillchen in https://github.com/google/mesop/pull/1037
* Use OS specific path separator by kumaranvpl in https://github.com/google/mesop/pull/1038
* [Snyk] Security upgrade python from 3.10.14-bullseye to 3.12.7-bullseye by wwwillchen in https://github.com/google/mesop/pull/1040
* Fix server error dialog UI by wwwillchen in https://github.com/google/mesop/pull/1042
* Add proper concurrency support in websockets mode by wwwillchen in https://github.com/google/mesop/pull/1036
* Bump to v0.12.7 by wwwillchen in https://github.com/google/mesop/pull/1044

New Contributors
* kumaranvpl made their first contribution in https://github.com/google/mesop/pull/1038

**Full Changelog**: https://github.com/google/mesop/compare/v0.12.6...v0.12.7

Page 1 of 6

Links

Releases

Has known vulnerabilities

Next

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.