Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade docsify from 4.11.4 to 4.11.6 #1373

Merged
merged 1 commit into from
Sep 13, 2020

Conversation

snyk-bot
Copy link
Contributor

Snyk has created this PR to upgrade docsify from 4.11.4 to 4.11.6.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 2 versions ahead of your current version.
  • The recommended version was released 21 days ago, on 2020-08-22.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS )
SNYK-JS-MARKED-584281
520/1000
Why? Has a fix available, CVSS 5.9
No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: docsify
  • 4.11.6 - 2020-08-22

    Bug Fixes

    • Add patch for {docsify-ignore} and {docsify-ignore-all} (ce31607)
  • 4.11.5 - 2020-08-21

    Bug Fixes

    • Russian language link error (#1270) (2a52460)
    • {docsify-updated} in the sample code is parsed into time (#1321) (2048610)
    • Add error handling for missing dependencies (fixes #1210) (#1232) (3673001)
    • after setting the background image, the button is obscured (#1234) (34d918f)
    • convert {docsify-ignore} and {docsify-ignore-all} to HTML comments (#1318) (90d283d)
    • fallback page should use path not file location (#1301) (2bceabc)
    • Fix search error when exist translations documents (#1300) (b869019)
    • gitignore was ignoring folders in src, so VS Code search results or file fuzzy finder were not working, etc (d4c9247)
    • packages/docsify-server-renderer/package.json & packages/docsify-server-renderer/package-lock.json to reduce vulnerabilities (#1250) (d439bac)
    • search can not search the table header (#1256) (3f03e78)
    • Search plugin: matched text is replaced with search text (#1298) (78775b6)
    • the uncaught typeerror when el is null (#1308) (952f4c9)
    • Updated docs with instructions for installing specific version (fixes #780) (#1225) (b90c948)
    • upgrade medium-zoom from 1.0.5 to 1.0.6 (3beaa66)
    • upgrade tinydate from 1.2.0 to 1.3.0 (#1341) (59d090f)

    Features

  • 4.11.4 - 2020-06-18

    Bug Fixes

    • consistent location of search result (e9dd2de)
    • cover overlapping sidebar by removing z-index (0bf03f5)
    • cross-origin url cannot be redirected when "externalLinkTarget" is set to "_self" and "routerMode" is set to "history". (#1062) (fd2cec6), closes #1046 #1046 #1046
    • default html img resize if no height included (#1065) (9ff4d06)
    • fixed target and rel issue (fixes #1183) (3d662a5)
    • Inconsistent search and body rendering (dcb0aae)
    • rendering cover width bug (717991c)
    • search does not find the contents of the table (#1198) (31010e4)
    • The search error after setting the ID in the title (#1159) (6e554f8)
    • upgrade docsify from 4.10.2 to 4.11.2 (60b7f89)

    Features

    • added html sanitizer for remote rendering (#1128) (714ef29)
    • update src/core/index.js to export all global APIs, deprecate old globals in favor of a single global DOCSIFY, and add tests for this (7e002bf)

    Reverts

    • Revert "Updated docs site dark and light mode with switch and redesigned search bar using docsify-darklight-theme" (#1207) (26cb940), closes #1207 #1182
from docsify GitHub release notes
Commit messages
Package name: docsify

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@vercel
Copy link

vercel bot commented Sep 12, 2020

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/docsify-core/docsify-preview/7dqhl8s2v
✅ Preview: https://docsify-previe-git-snyk-upgrade-777c37b9983159c2860c369f-07f80b.docsify-core.vercel.app

@codesandbox-ci
Copy link

This pull request is automatically built and testable in CodeSandbox.

To see build info of the built libraries, click here or the icon next to each commit SHA.

Latest deployment of this branch, based on commit 4b13703:

Sandbox Source
docsify-template Configuration

@Koooooo-7 Koooooo-7 merged commit c2d12ed into develop Sep 13, 2020
@sy-records sy-records deleted the snyk-upgrade-777c37b9983159c2860c369faff8ded6 branch September 13, 2020 04:17
trusktr added a commit that referenced this pull request Nov 2, 2020
* develop: (81 commits)
  fix: upgrade dompurify from 2.1.0 to 2.1.1 (#1402)
  fix: upgrade dompurify from 2.0.17 to 2.1.0 (#1397)
  fix: search on homepage test (#1398)
  fix: the sidebar links to another site. (#1336)
  fix: Can't search homepage content (#1391)
  fix: upgrade debug from 4.1.1 to 4.3.0 (#1390)
  fix: packages/docsify-server-renderer/package.json & packages/docsify-server-renderer/package-lock.json to reduce vulnerabilities (#1389)
  Fix eslint warnings (#1388)
  docs: add crossOriginLinks configurations details. (#1386)
  Remove Cypress screenshots
  Fix friendly message display
  Add Vue 3 compatibility
  Show dir listing & help msg for manual instance
  Add NODE_MODULES_URL global
  Jest + Playwright Testing (#1276)
  update doc (#1381)
  Fix scroll event end value
  fix: upgrade docsify from 4.11.4 to 4.11.6 (#1373)
  chore(deps): bump node-fetch in /packages/docsify-server-renderer (#1370)
  test: fix cannot search list content (#1367)
  ...
@sy-records sy-records mentioned this pull request Feb 5, 2021
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants