chore(deps): Bump pymdown-extensions from 10.9 to 10.12

[dependabot]

Bumps pymdown-extensions from 10.9 to 10.12.

Release notes

Sourced from pymdown-extensions's releases.

10.12

• NEW: Blocks: Blocks extensions no longer considered in beta.
• NEW: Details: Details is marked as "legacy" in documentation in favor of the new pymdownx.blocks.details approach.
• NEW: Tabbed: Tabbed is marked as "legacy" in documentation in favor of the new pymdownx.blocks.tab approach.
• NEW: Caption: Add new "blocks" style extension called Caption which helps with specifying figures with captions.
• NEW: Emoji: Add a new strict option that will raise an exception if an emoji is used whose name has changed, removed, or never existed.
• FIX: Emoji: Emoji links should be generated such that they point to the new CDN version.

10.11.2

• FIX: SuperFences: Fix a regression where certain patterns could cause a hang.

10.11.1

• Fix: SuperFences: Fix regression where an omitted language in conjunction with options in the fenced header can cause a fence to not be parsed.

10.11

• NEW: SuperFences: Allow fenced code to be parsed in the form ```lang {.class #id}.

10.10.2

• FIX: BetterEm: Add better support for *em, **em,strong*** and _em, __em,strong___ cases.
• FIX: Caret: Add better support for *sup, **sup,ins***.
• FIX: Tilde: Add better support for *sub, **sub,del***.

10.10.1

• FIX: FancyLists: Remove a mistaken semicolon from injected classes.

10.10

• NEW: FancyLists: Add new FancyLists extension.
• NEW: MagicLink: Change social links to support x instead of twitter. twitter is still recognized but is now deprecated and will be removed at a future time.
• NEW: Emoji: Update Twemoji data to the latest.
• FIX: PathConverter: Fixes for latest changes in Python regarding urlunparse.

Commits

• 20be2fc Update caption docs to use image example
• 2c7f8c0 Add catpion extension (#2492)
• b647b8d Include white and black
• 3a89709 Fix more sass stuff in doc style
• e8ec7bf Update JS Doc deps and fix some links
• 0973681 Docs: Update JS deps
• 659b4d9 Add new strict option in the emoji extension (#2488)
• a994065 Fix SuperFence pattern should require options to be separated by a space (#2480)
• 96e19e6 Remove more duplicate words
• 3f6fbbb Typos: remove various duplicated words
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[codacy-production]

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

🟢 Metrics 0 complexity . 0 duplication

Metric	Results
Complexity	0
Duplication	0

View in Codacy

AI Reviewer: first review requested successfully. AI can make mistakes. Always validate suggestions.

_{TIP This summary will be updated as you push new changes. Give us feedback}

[codacy-production]

Pull Request Overview

This PR updates pymdown-extensions from 10.9 to 10.12; however, version 10.12 is affected by a Regular Expression Denial of Service (ReDoS) vulnerability (CVE-2025-68142). To resolve this security risk, the dependency should be bumped to at least version 10.16.1. Additionally, there are no verification results ensuring that the documentation build remains stable, particularly for extensions like 'Details' and 'Tabbed' which are marked as legacy in this release.

About this PR

• The PR lacks any verification or test results confirming that the dependency bump does not break the documentation build, particularly since version 10.12 introduces legacy warnings for commonly used extensions like 'Details' and 'Tabbed'.

Test suggestions

• Verify that the documentation site builds successfully with the updated extensions.
• Verify that existing 'Details' and 'Tabbed' markdown components still render correctly despite being marked as legacy in this version.

Prompt proposal for missing tests

Consider implementing these tests if applicable:
1. Verify that the documentation site builds successfully with the updated extensions.
2. Verify that existing 'Details' and 'Tabbed' markdown components still render correctly despite being marked as legacy in this version.

---

🗒️ Improve review quality by adding custom instructions

[codacy-production]

_{🔴 HIGH RISK}

Suggestion: This version of pymdown-extensions is vulnerable to a Regular Expression Denial of Service (ReDoS) attack (CVE-2025-68142) found in the figure caption extension. Since you are already updating this dependency, you should bump it directly to version 10.16.1 to ensure the environment is secure.

This might be a simple fix:

Suggested change

	pymdown-extensions==10.12
	pymdown-extensions==10.16.1

See Issue in Codacy