Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade dompurify from 2.1.0 to 2.1.1 #1402

Merged
merged 1 commit into from
Oct 17, 2020
Merged

[Snyk] Upgrade dompurify from 2.1.0 to 2.1.1 #1402

merged 1 commit into from
Oct 17, 2020

Conversation

snyk-bot
Copy link
Contributor

Snyk has created this PR to upgrade dompurify from 2.1.0 to 2.1.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.
  • The recommended version was released 21 days ago, on 2020-09-25.
Release notes
Package name: dompurify
  • 2.1.1 - 2020-09-25
    • Removed some code targeting old Safari versions
    • Removed some code targeting older MS Edge versions
    • Re-added some code targeting older Chrome versions, thanks @terjanq
    • Added new tests and removed unused SAFE_FOR_JQUERY test cases
    • Added Node 14.x to existing test coverage
  • 2.1.0 - 2020-09-23
    • Fixed several possible mXSS patterns, thanks @hackvertor
    • Removed the SAFE_FOR_JQUERY flag (we are safe by default now for jQuery)
    • Removed several now useless mXSS checks
    • Updated the mXSS check for elements
    • Updated test cases to cover new sanitization strategy
    • Updated test website to use newer jQuery
    • Updated array of tested browsers and removed legacy browsers
    • Added "auto convert" checkbox to test website, thanks @hackvertor
from dompurify GitHub release notes
Commit messages
Package name: dompurify
  • 461589a chore: prepared 2.1.1 release
  • 32b3241 chore: preparing 2.1.1 release
  • daf4c05 docs: updated acknowledgements on README
  • b552659 fix: re-enabled the mXSS check for old Chrome at the right place
  • aec12c4 fix: Re-added an mXSS check for old Chrome
  • 4586294 test: removed Node 15 again from test matrix
  • 495c948 test: Added Node 14.x and 15.x to test jobs
  • 075e58a fix: changed short comment to long to avoid micro-mutations
  • 0228425 test: stripped SAFE_FOR_JQUERY from several tests
  • 4eb5d93 test: removed a Safari 8 specific test
  • 3bdfb3a fix: fremoved a lot of code-voodoo for Safari 8 and 9
  • 41e00f2 fix: removed some of the removeTitle logic for older MS Edge

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@vercel
Copy link

vercel bot commented Oct 16, 2020
edited
Loading

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/docsify-core/docsify-preview/otzn96buj
✅ Preview: https://docsify-previe-git-snyk-upgrade-a022a823426568b54909e0dc-91926f.docsify-core.vercel.app

@codesandbox-ci
Copy link

This pull request is automatically built and testable in CodeSandbox.

To see build info of the built libraries, click here or the icon next to each commit SHA.

Latest deployment of this branch, based on commit 45468a1:

Sandbox Source
docsify-template Configuration

@Koooooo-7 Koooooo-7 merged commit 8cf9fd8 into develop Oct 17, 2020
trusktr added a commit that referenced this pull request Nov 2, 2020
@trusktr
Merge branch 'develop' into fix-validating-remote-content
d516198 
* develop: (81 commits)
  fix: upgrade dompurify from 2.1.0 to 2.1.1 (#1402)
  fix: upgrade dompurify from 2.0.17 to 2.1.0 (#1397)
  fix: search on homepage test (#1398)
  fix: the sidebar links to another site. (#1336)
  fix: Can't search homepage content (#1391)
  fix: upgrade debug from 4.1.1 to 4.3.0 (#1390)
  fix: packages/docsify-server-renderer/package.json & packages/docsify-server-renderer/package-lock.json to reduce vulnerabilities (#1389)
  Fix eslint warnings (#1388)
  docs: add crossOriginLinks configurations details. (#1386)
  Remove Cypress screenshots
  Fix friendly message display
  Add Vue 3 compatibility
  Show dir listing & help msg for manual instance
  Add NODE_MODULES_URL global
  Jest + Playwright Testing (#1276)
  update doc (#1381)
  Fix scroll event end value
  fix: upgrade docsify from 4.11.4 to 4.11.6 (#1373)
  chore(deps): bump node-fetch in /packages/docsify-server-renderer (#1370)
  test: fix cannot search list content (#1367)
  ...
@sy-records sy-records deleted the snyk-upgrade-a022a823426568b54909e0dca1dba82f branch November 6, 2020 00:34
@sy-records sy-records mentioned this pull request Feb 5, 2021
Merged
3 tasks
This was referenced Jan 17, 2022
Closed
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Koooooo-7 Koooooo-7 Koooooo-7 approved these changes

@sy-records sy-records sy-records approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@snyk-bot @Koooooo-7 @sy-records