[Snyk] Upgrade highlight.js from 11.7.0 to 11.9.0

[GCODIN]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade highlight.js from 11.7.0 to 11.9.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 2 versions ahead of your current version.

• The recommended version was released on 9 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	169	Proof of Concept
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	169	Proof of Concept
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	169	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	169	Proof of Concept
	Undesired Behavior SNYK-JS-STYLEDCOMPONENTS-3149924	169	No Known Exploit
	Permissive Cross-domain Policy with Untrusted Domains SNYK-JS-UNDICI-6252336	169	No Known Exploit
	Improper Access Control SNYK-JS-UNDICI-6564963	169	No Known Exploit
	Improper Authorization SNYK-JS-UNDICI-6564964	169	No Known Exploit

Release notes

Package name: highlight.js

• 11.9.0 - 2023-10-09
  

  Version 11.9.0

  CAVEATS / POTENTIALLY BREAKING CHANGES

  • Drops support for Node 14.x, which is no longer supported by Node.js.
  • In the node build styles/*.css files now ship un-minified
    with minified counterparts as: styles/*.min.css mvorisek
    (this makes things consistent with our cdn builds)

  Parser:

  • (enh) prevent re-highlighting of an element [joshgoebel][]
  • (chore) Remove discontinued badges from README Bradley Mackey
  • (chore) Fix build size report Bradley Mackey

  New Grammars:

  • added 3rd party Iptables grammar to SUPPORTED_LANGUAGES Checconio
  • added 3rd party x86asmatt grammar to SUPPORTED_LANGUAGES gondow
  • added 3rd party riscv64 grammar to SUPPORTED_LANGUAGES aana-h2
  • added 3rd party Ballerina grammar to SUPPORTED_LANGUAGES Yasith Deelaka

  Core Grammars:

  • fix(rust) added negative-lookahead for callable keywords if while for [Omar Hussein][]
  • enh(armasm) added x0-x30 and w0-w30 ARMv8 registers Nicholas Thompson
  • enh(haxe) added final, is, macro keywords and $ identifiers Robert Borghese
  • enh(haxe) support numeric separators and suffixes Robert Borghese
  • fix(haxe) fixed metadata arguments and support non-colon syntax Robert Borghese
  • fix(haxe) differentiate abstract declaration from keyword Robert Borghese
  • fix(bash) do not delimit a string by an escaped apostrophe [hancar][]
  • enh(swift) support macro keyword Bradley Mackey
  • enh(swift) support parameter pack keywords Bradley Mackey
  • enh(swift) regex literal support Bradley Mackey
  • enh(swift) @ unchecked and @ Sendable support Bradley Mackey
  • enh(scala) add using directives support //> using foo bar [Jamie Thompson][]
  • fix(scala) fixed comments in constructor arguments not being properly highlighted Isaac Nonato
  • enh(swift) ownership modifiers support Bradley Mackey
  • enh(nsis) Add !assert compiler flag [idleberg][]
  • fix(haskell) do not treat double dashes inside infix operators as comments [Zlondrej][]
  • enh(rust) added eprintln! macro qoheniac
  • enh(leaf) update syntax to 4.0 Samuel Bishop
  • fix(reasonml) simplify syntax and align it with ocaml jchavarri
  • fix(swift) warn_unqualified_access is an attribute Bradley Mackey
  • enh(swift) macro attributes are highlighted as keywords Bradley Mackey
  • enh(stan) updated for version 2.33 (#3859) Brian Ward
  • fix(css) added '_' css variable detection Md Saad Akhtar
  • enh(groovy) add record and var as keywords Guillaume Laforge

  Developer Tool:

  • (chore) Update dev tool to use the new highlight API. Shah Shabbir Ahmmed
  • (enh) Auto-update the highlighted output when the language dropdown changes. Shah Shabbir Ahmmed
• 11.8.0 - 2023-04-29
  

  Changelog

  Parser engine:

  • added a function to default export to generate a fresh highlighter instance to be used by extensions WisamMechano
  • added BETA __emitTokens key to grammars to allow then to direct their own parsing, only using Highlight.js for the HTML rendering Josh Goebel
  • (enh) add removePlugin api faga295
  • (fix) typo in language name of JavaScript Cyrus Kao

  New Grammars:

  • added 3rd party Lang grammar to SUPPORTED_LANGUAGES AdamRaichu
  • added 3rd party C3 grammar to SUPPORTED_LANGUAGES aliaegik

  Core Grammars:

  • enh(sql) support _ in variable names [joshgoebel][]
  • enh(mathematica) update keywords list to 13.2.1 arnoudbuzing
  • enh(protobuf) add proto alias for Protobuf [dimitropoulos][]
  • enh(sqf) latest changes in Arma 3 v2.11 Leopard20
  • enh(js/ts) Added support for GraphQL tagged template strings Ali Ukani
  • enh(javascript) add sessionStorage to list of built-in variables Jeroen van Vianen
  • enh(http) Add supporxt for HTTP/3 Rijenkii
  • added 3rd party Motoko grammar to SUPPORTED_LANGUAGES rvanasa
  • added 3rd party Candid grammar to SUPPORTED_LANGUAGES rvanasa
  • fix(haskell) Added support for characters CrystalSplitter
  • enh(dart) Add base, interface, sealed, and when keywords Sam Rawlins
  • enh(php) detect newer more flexible NOWdoc syntax (#3679) Timur Kamaev
  • enh(python) improve autodetection of code with type hinting any function's return type (making the -> operator legal) Keyacom
  • enh(bash) add select and until as keywords
• 11.7.0 - 2022-11-23
  

  Version 11.7.0

  New Grammars:

  • added 3rd party LookML grammar to SUPPORTED_LANGUAGES Josh Temple
  • added 3rd party FunC grammar to SUPPORTED_LANGUAGES [Nikita Sobolev][]
  • Added 3rd party Flix grammar to SUPPORTED_LANGUAGES The Flix Organisation
  • Added 3rd party RVT grammar to SUPPORTED_LANGUAGES Sopitive

  Grammars:

  • enh(scheme) add scm alias for Scheme matyklug18
  • fix(typescript) patterns like <T = are not JSX Josh Goebel
  • fix(bash) recognize the (( keyword Nick Chambers
  • enh(Ruby) misc improvements (kws, class names, etc) Josh Goebel
  • fix(js) do not flag import() as a function, rather a keyword nathnolt
  • fix(bash) recognize the (( keyword Nick Chambers
  • fix(nix) support escaped dollar signs in strings h7x4
  • enh(cmake) support bracket comments Hirse
  • enh(java) add yield keyword to java MBoegers
  • enh(java) add permits keyword to java MBoegers
  • fix(javascript/typescript) correct identifier matching when using numbers Lachlan Heywood

  Improvements:

  • Documentation typo fix by Eddymens

from highlight.js GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs