Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the frontends-prod group across 4 directories with 6 updates #700

Merged
merged 1 commit into from
Feb 19, 2025
Merged

Bump the frontends-prod group across 4 directories with 6 updates #700

merged 1 commit into from
Feb 19, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 18, 2025
edited
Loading

Bumps the frontends-prod group with 2 updates in the /account-gui directory: dompurify and sass.
Bumps the frontends-prod group with 1 update in the /myconext-gui directory: sass.
Bumps the frontends-prod group with 2 updates in the /public-gui directory: sass and @surfnet/sds.
Bumps the frontends-prod group with 5 updates in the /servicedesk-gui directory:

Package From To
dompurify 3.2.3 3.2.4
sass 1.83.0 1.85.0
react-router-dom 7.1.0 7.1.5
isomorphic-dompurify 2.19.0 2.21.0
zustand 5.0.2 5.0.3

Updates dompurify from 3.2.3 to 3.2.4

Release notes

Sourced from dompurify's releases.

DOMPurify 3.2.4

  • Fixed a conditional and config dependent mXSS-style bypass reported by @​nsysean
  • Added a new feature to allow specific hook removal, thanks @​davecardwell
  • Added purify.js and purify.min.js to exports, thanks @​Aetherinox
  • Added better logic in case no window object is president, thanks @​yehuya
  • Updated some dependencies called out by dependabot
  • Updated license files etc to show the correct year
Commits
  • ec29e65 Merge pull request #1062 from cure53/main
  • 1c1b183 chore: Preparing 3.2.4 release
  • d18ffcb fix: Changed the template literal regex to avoid a config-dependent bypass
  • 0d64d2b Merge pull request #1060 from yehuya/initializeTestImprovements
  • 9ad7933 tests: DOMPurify custom window tests improvements
  • 72760ca Merge pull request #1059 from yehuya/fixMissingWindowElement
  • bc72d44 Fix tests
  • 363a89d fix: handle undefined Element in DOMPurify initialization
  • f41b45d Update LICENSE
  • b25bf26 Update README.md
  • Additional commits viewable in compare view

Updates sass from 1.83.4 to 1.85.0

Release notes

Sourced from sass's releases.

Dart Sass 1.85.0

To install Sass 1.85.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • No longer fully trim redundant selectors generated by @extend. This caused unacceptable performance issues for certain heavy users of @extend. We'll try to find a more performant way to accomplish it in the future.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.85.0

  • No longer fully trim redundant selectors generated by @extend. This caused unacceptable performance issues for certain heavy users of @extend. We'll try to find a more performant way to accomplish it in the future.

1.84.0

  • Allow newlines in whitespace in the indented syntax.

  • Potentially breaking bug fix: Selectors with unmatched brackets now always produce a parser error. Previously, some edge cases like [foo#{"]:is(bar"}) {a: b} would compile without error, but this was an unintentional bug.

  • Fix a bug in which various Color Level 4 functions weren't allowed in plain CSS.

  • Fix the error message for @extend without a selector and possibly other parsing edge-cases in contexts that allow interpolation.

Embedded Host

  • Fixed the implementation of the SassBoolean type to adhere to the spec, now using a class instead of an interface.
Commits

Updates sass from 1.83.4 to 1.85.0

Release notes

Sourced from sass's releases.

Dart Sass 1.85.0

To install Sass 1.85.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • No longer fully trim redundant selectors generated by @extend. This caused unacceptable performance issues for certain heavy users of @extend. We'll try to find a more performant way to accomplish it in the future.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.85.0

  • No longer fully trim redundant selectors generated by @extend. This caused unacceptable performance issues for certain heavy users of @extend. We'll try to find a more performant way to accomplish it in the future.

1.84.0

  • Allow newlines in whitespace in the indented syntax.

  • Potentially breaking bug fix: Selectors with unmatched brackets now always produce a parser error. Previously, some edge cases like [foo#{"]:is(bar"}) {a: b} would compile without error, but this was an unintentional bug.

  • Fix a bug in which various Color Level 4 functions weren't allowed in plain CSS.

  • Fix the error message for @extend without a selector and possibly other parsing edge-cases in contexts that allow interpolation.

Embedded Host

  • Fixed the implementation of the SassBoolean type to adhere to the spec, now using a class instead of an interface.
Commits

Updates sass from 1.83.0 to 1.85.0

Release notes

Sourced from sass's releases.

Dart Sass 1.85.0

To install Sass 1.85.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • No longer fully trim redundant selectors generated by @extend. This caused unacceptable performance issues for certain heavy users of @extend. We'll try to find a more performant way to accomplish it in the future.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.85.0

  • No longer fully trim redundant selectors generated by @extend. This caused unacceptable performance issues for certain heavy users of @extend. We'll try to find a more performant way to accomplish it in the future.

1.84.0

  • Allow newlines in whitespace in the indented syntax.

  • Potentially breaking bug fix: Selectors with unmatched brackets now always produce a parser error. Previously, some edge cases like [foo#{"]:is(bar"}) {a: b} would compile without error, but this was an unintentional bug.

  • Fix a bug in which various Color Level 4 functions weren't allowed in plain CSS.

  • Fix the error message for @extend without a selector and possibly other parsing edge-cases in contexts that allow interpolation.

Embedded Host

  • Fixed the implementation of the SassBoolean type to adhere to the spec, now using a class instead of an interface.
Commits

Updates @surfnet/sds from 0.0.120 to 0.0.127

Commits

Updates dompurify from 3.2.3 to 3.2.4

Release notes

Sourced from dompurify's releases.

DOMPurify 3.2.4

  • Fixed a conditional and config dependent mXSS-style bypass reported by @​nsysean
  • Added a new feature to allow specific hook removal, thanks @​davecardwell
  • Added purify.js and purify.min.js to exports, thanks @​Aetherinox
  • Added better logic in case no window object is president, thanks @​yehuya
  • Updated some dependencies called out by dependabot
  • Updated license files etc to show the correct year
Commits
  • ec29e65 Merge pull request #1062 from cure53/main
  • 1c1b183 chore: Preparing 3.2.4 release
  • d18ffcb fix: Changed the template literal regex to avoid a config-dependent bypass
  • 0d64d2b Merge pull request #1060 from yehuya/initializeTestImprovements
  • 9ad7933 tests: DOMPurify custom window tests improvements
  • 72760ca Merge pull request #1059 from yehuya/fixMissingWindowElement
  • bc72d44 Fix tests
  • 363a89d fix: handle undefined Element in DOMPurify initialization
  • f41b45d Update LICENSE
  • b25bf26 Update README.md
  • Additional commits viewable in compare view

Updates sass from 1.83.0 to 1.85.0

Release notes

Sourced from sass's releases.

Dart Sass 1.85.0

To install Sass 1.85.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • No longer fully trim redundant selectors generated by @extend. This caused unacceptable performance issues for certain heavy users of @extend. We'll try to find a more performant way to accomplish it in the future.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.85.0

  • No longer fully trim redundant selectors generated by @extend. This caused unacceptable performance issues for certain heavy users of @extend. We'll try to find a more performant way to accomplish it in the future.

1.84.0

  • Allow newlines in whitespace in the indented syntax.

  • Potentially breaking bug fix: Selectors with unmatched brackets now always produce a parser error. Previously, some edge cases like [foo#{"]:is(bar"}) {a: b} would compile without error, but this was an unintentional bug.

  • Fix a bug in which various Color Level 4 functions weren't allowed in plain CSS.

  • Fix the error message for @extend without a selector and possibly other parsing edge-cases in contexts that allow interpolation.

Embedded Host

  • Fixed the implementation of the SassBoolean type to adhere to the spec, now using a class instead of an interface.
Commits

Updates react-router-dom from 7.1.0 to 7.1.5

Release notes

Sourced from react-router-dom's releases.

v7.1.3

See the changelog for release notes: https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v713

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

[email protected]

Patch Changes

... (truncated)

Changelog

Sourced from react-router-dom's changelog.

7.1.5

Patch Changes

7.1.4

Patch Changes

7.1.3

Patch Changes

7.1.2

Patch Changes

7.1.1

Patch Changes

Commits

Updates isomorphic-dompurify from 2.19.0 to 2.21.0

Release notes

Sourced from isomorphic-dompurify's releases.

Updated dependencies

Changelog

  • Updated dompurify and others.

See the complete changelog for more details.

Release

2.21.0

Updated dependencies

Changelog

  • Updated jsdom.

See the complete changelog for more details.

Release

2.20.0

Commits
  • 4bd4eda Incremented project version.
  • d5eca5f Merge pull request #313 from kkomelin/dependabot/npm_and_yarn/dompurify-3.2.4
  • 22f1402 Bump dompurify from 3.2.3 to 3.2.4
  • c24aeaf Merge pull request #312 from kkomelin/dependabot/npm_and_yarn/vitest-3.0.4
  • 413e301 Bump vitest from 3.0.3 to 3.0.4
  • 73727e2 Merge pull request #311 from kkomelin/dependabot/npm_and_yarn/vitest-3.0.3
  • 0ef0a39 Bump vitest from 3.0.2 to 3.0.3
  • ca19e27 Merge pull request #310 from kkomelin/dependabot/npm_and_yarn/vitest-3.0.2
  • daf1ef0 Bump vitest from 3.0.1 to 3.0.2
  • c98c707 Merge pull request #309 from kkomelin/dependabot/npm_and_yarn/vitest-3.0.1
  • Additional commits viewable in compare view

Updates zustand from 5.0.2 to 5.0.3

Release notes

Sourced from zustand's releases.

v5.0.3

ExtractState is a type util to extract state type from store type.

What's Changed

New Contributors

Full Changelog: pmndrs/zustand@v5.0.2...v5.0.3

Commits
  • 3f9127f 5.0.3
  • 6eff6e7 chore(deps): update dev dependencies (#2944)
  • 4378abe fix(build): alias entries in rollup config (#2942)
  • d2ac820 feat(types): Make ExtractState public (#2935)
  • 929b547 docs(create-store.md): fix incorrect usage of create function in example (#...
  • efaf416 docs(create.md): fix state selector syntax in troubleshooting example (#2938)
  • 07b32d6 change prettier to fix:format (#2936)
  • 6759fcb chore(.github/workflows): change 'node-version' to 'lts/*' in 'actions/setup-...
  • 2e6d881 chore(eslint): change 'dist' area in 'ignores', sort rules (#2924)
  • 55a7d0a chore(eslint): migrate to flat config and simplify (#2912)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 18, 2025
@dependabot
Bump the frontends-prod group across 4 directories with 6 updates
9bee94e 
Bumps the frontends-prod group with 2 updates in the /account-gui directory: [dompurify](https://github.com/cure53/DOMPurify) and [sass](https://github.com/sass/dart-sass).
Bumps the frontends-prod group with 1 update in the /myconext-gui directory: [sass](https://github.com/sass/dart-sass).
Bumps the frontends-prod group with 2 updates in the /public-gui directory: [sass](https://github.com/sass/dart-sass) and [@surfnet/sds](https://github.com/SURFnet/sds).
Bumps the frontends-prod group with 5 updates in the /servicedesk-gui directory:

| Package | From | To |
| --- | --- | --- |
| [dompurify](https://github.com/cure53/DOMPurify) | `3.2.3` | `3.2.4` |
| [sass](https://github.com/sass/dart-sass) | `1.83.0` | `1.85.0` |
| [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom) | `7.1.0` | `7.1.5` |
| [isomorphic-dompurify](https://github.com/kkomelin/isomorphic-dompurify) | `2.19.0` | `2.21.0` |
| [zustand](https://github.com/pmndrs/zustand) | `5.0.2` | `5.0.3` |



Updates `dompurify` from 3.2.3 to 3.2.4
- [Release notes](https://github.com/cure53/DOMPurify/releases)
- [Commits](cure53/DOMPurify@3.2.3...3.2.4)

Updates `sass` from 1.83.4 to 1.85.0
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.83.4...1.85.0)

Updates `sass` from 1.83.4 to 1.85.0
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.83.4...1.85.0)

Updates `sass` from 1.83.0 to 1.85.0
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.83.4...1.85.0)

Updates `@surfnet/sds` from 0.0.120 to 0.0.127
- [Commits](https://github.com/SURFnet/sds/commits)

Updates `dompurify` from 3.2.3 to 3.2.4
- [Release notes](https://github.com/cure53/DOMPurify/releases)
- [Commits](cure53/DOMPurify@3.2.3...3.2.4)

Updates `sass` from 1.83.0 to 1.85.0
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.83.4...1.85.0)

Updates `react-router-dom` from 7.1.0 to 7.1.5
- [Release notes](https://github.com/remix-run/react-router/releases)
- [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md)
- [Commits](https://github.com/remix-run/react-router/commits/[email protected]/packages/react-router-dom)

Updates `isomorphic-dompurify` from 2.19.0 to 2.21.0
- [Release notes](https://github.com/kkomelin/isomorphic-dompurify/releases)
- [Commits](kkomelin/isomorphic-dompurify@v2.19.0...2.21.0)

Updates `zustand` from 5.0.2 to 5.0.3
- [Release notes](https://github.com/pmndrs/zustand/releases)
- [Commits](pmndrs/zustand@v5.0.2...v5.0.3)

---
updated-dependencies:
- dependency-name: dompurify
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontends-prod
- dependency-name: sass
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontends-prod
- dependency-name: sass
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontends-prod
- dependency-name: sass
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: frontends-prod
- dependency-name: "@surfnet/sds"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontends-prod
- dependency-name: dompurify
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontends-prod
- dependency-name: sass
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: frontends-prod
- dependency-name: react-router-dom
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontends-prod
- dependency-name: isomorphic-dompurify
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontends-prod
- dependency-name: zustand
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontends-prod
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/account-gui/frontends-prod-6a832b0acb branch from 091cc9b to 9bee94e Compare February 18, 2025 16:25
@oharsta oharsta merged commit ab37b57 into main Feb 19, 2025
4 checks passed
@oharsta oharsta deleted the dependabot/npm_and_yarn/account-gui/frontends-prod-6a832b0acb branch February 19, 2025 11:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@oharsta oharsta

Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
Openconext-Myconext
Status: Ready for release
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@oharsta