Bump marimo from 0.20.4 to 0.23.0 in /python-wrapper

[dependabot]

Bumps marimo from 0.20.4 to 0.23.0.

Release notes

Sourced from marimo's releases.

0.22.0

What's Changed

This release brings a unified data table explorer, reliability improvements to the programmatic notebook API that power the new marimo-pair agent skill, smarter numeric formatting in tables, faster mo.persistent_cache, and a contextual tips system in the CLI.

⭐ Highlights

Combined row viewer and column explorer

The row viewer and column explorer panels are now unified into a single tabbed "Table Explorer" pane. A single toolbar button opens and closes the panel; Rows and Columns tabs live inside it, and your selected tab persists across open/close.

Pair programming with marimo-pair

The experimental _code API receives reliability fixes in this release, enabling the new marimo-pair agent skill for pair programming in marimo notebooks.

npx skills add marimo-team/marimo-pair

🚨 Breaking changes

mo.image no longer normalizes uint8 values (#8889)

Previously, mo.image() normalized all numeric arrays (including uint8) to the [0, 1] float range. Now, uint8 arrays are always rendered with values in [0, 255] without normalization. Two new parameters — vmin and vmax — let you set explicit value bounds for under- or over-saturated displays. If you relied on the old uint8 normalization, pass vmin=0, vmax=1 explicitly.

__marimo__ location now follows sys.pycache_prefix (#8797)

The __marimo__ directory now respects sys.pycache_prefix, consistent with Python's own __pycache__ placement. This also fixes cache placement for notebooks in nested directories. Existing caches will not be migrated — they can be safely deleted.

Cache version bump (#8793)

The cache format version has been bumped, invalidating existing caches.

✨ Enhancements

• Remove auto-instantiate from /api/execute endpoint (#8943)
• Use document as source of truth in code_mode _apply_ops (#8944)
• Enhance SQLAlchemy engine with safe_execute and inspector methods for SnowFlake (#8920)
• Support custom cloudpathlib providers in path normalization (#8929)
• Use variable name as download filename in dataframe viewer (#8811)
• Unify row viewer and column explorer (#8905)
• Fix hide_code not taking effect on kernel-created cells (#8926)
• Virtualize data table rows when pagination is disabled (#8899)
• Emit document transactions from --watch file reload (#8846)
• Remove document mutation from session.notify() (#8886)
• Style fix for li & ol: reduce margin and restore original disc (#8768)
• Avoid selecting cells in table when interactive elements (#8862)
• Lazy-load KaTeX via dynamic import of @​streamdown/math (#8874)
• Display startup tips in CLI (#8836)
• Add ListSQLSchemas to support lazy schema fetching in datasource panel (#8824)

... (truncated)

Commits

• 7d07685 release: 0.23.0 (#9099)
• c24d480 fix: properly authenticate terminal route (#9098)
• 78489d4 feat(plotly): add reactive area chart selection support (#9046)
• 8649f3b feat(plotly): add reactive violin plot selection support (#9011)
• 3ed090f feat: Accept suggestion on Enter (frontend-only localStorage pref) (#9016)
• 8d1ea4a fix use API.get for pair with agent modal (#9090)
• e072d9f docs: fix a misformatted markdown link (#9093)
• 55b1f86 fix: table filtering by NaN in pandas string columns (#9092)
• 986886f fix: reset Plotly axis settings when switching between different chart types ...
• eade4fe feat: indicate server side installations (#8998)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.