Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade dashjs from 4.7.2 to 4.7.4 #162

Closed
wants to merge 1 commit into from

Conversation

xorinzor
Copy link
Member

snyk-top-banner

Snyk has created this PR to upgrade dashjs from 4.7.2 to 4.7.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 2 versions ahead of your current version.

  • The recommended version was released on 6 months ago.

Release notes
Package name: dashjs
  • 4.7.4 - 2024-02-20

    Features

    #4338 Add support for DVB Font downloads as specified in ETSI TS 103 285 V1.4.1 - Section 7.2 Downloadable Fonts by @ mattjuggins
    #4360 Add an event that enables manual rendering of subtitles by @ bitboxer
    #4330 Add API endpoint to trigger a manifest refresh by @ eirikbjornr
    #4336 Add IMSC settings for rollUp and displayForcedOnly by @ nigelmegitt
    #4382 Add a liveUpdateTimeThreshold to control time syncing during playback of live streams by @ matvp91

    Improvements

    #4359 Fix flickering and blinking of IMSC subtitles by @ mattjuggins
    #4350 Include HTTP request range in data that is passed to the modifyRequest function by @ dsilhavy
    #4356 Remove unused depdendency foodoc and move JSDoc related dependencies to devDependencies section in the package.json by @ dsilhavy
    #4362 Refactor DVB extensions properties to consistently use camel case. by @ mattjuggins

    Bugfixes

    #4348 #4349 Remove duplicate events in index.d.ts by @ kris-youview
    #4355 Fix invalid warning in StreamProcessor.js by @ dsilhavy
    #4335 Remove specific Chrome version from CircleCI config by @ dsilhavy
    #4363 Fix PlaybackErrorEvent Typescript typing by @ kris-youview
    #4365 Add a try/catch around matchSettingsLang in case bcp47Normalize fails with an error by @ dsilhavy
    #4368 Check for undefined values in addHttpRequest method by @ dsilhavy
    #4389 Fix a bug when dispatching subtitle events that causes an error in the event bus when the video is seeked by @ dsilhavy

  • 4.7.3 - 2023-12-08

    Features

    #4319 Add support for playback using the Managed Media Source @ dsilhavy

    Improvements

    #4280 Change template for JSDocs to avoid styling issues like the menu blocking the parameter description @ abdulaziz-bd
    #4298 Adds settings parameters to configure the AbandonRequestsRule.js @ dsilhavy
    #4267 Update all URLs to Livesim. Use Livesim2 instead of Livesim1 @ dsilhavy
    #4305 Remove outdated cues from track when adding a new cue to avoid memory leaks. @ dsilhavy
    #4310 Add new BBC R&D Test Streams to Reference Player @ mattjuggins
    #4320 Enable pass-through of UTF-8 chars when provided via lang-attribute @ stschr
    #4322 For low latency DASH use min/max playbackRate when the buffer is safe in mode: liveCatchupModeLoLP @ bwallberg
    #4324 Update to imscJS v1.1.4 @ nigelmegitt

    Bugfixes

    #4296 Fix two scheduling errors related to quality switches @ dsilhavy
    #4297 Fix the handling of abandoning segment requests @ dsilhavy
    #4314 Fix issues with the controlbar when muting video playback and transitioning from dynamic to static content @ ShikiSeiren
    #4323 Fix a bug in the OfflineStreamProcessor.js @ dsilhavy

  • 4.7.2 - 2023-09-28

    Features

    #4281 Adds a functional testsuite based on the Karma framework @ dsilhavy
    #4270 Reset MSE when switching codec if changeType() is unstable or unavailable. @ matvp91

    Improvements

    #4225 Define target web and es5 for webpack to make build files ES5 compliant @ dsilhavy
    #4221 Fix init value for storeLastSettings @ minhui-foxtel
    #4278 Add support for replacing a text node via MPD patching. @ dsilhavy
    #4242 Prevent redundant CC parser restarts during Low Latency streams @ m-buczek
    #4274 Add setting to change mediasource duration from infinity to math.pow(2, 32) @ bwallberg
    #4249 Compare indices of mediaInfo objects when checking if a track change was rendered. This accounts for content that has no ID attribute for the AdaptationSets @ dsilhavy
    #4272 Remove babel-preset-env @ ShiningTrapez

    Bugfixes

    #4224 Fix a bug for VTT.js based rendering that causes cues not to be removed after switching to a new source. @ dsilhavy
    #4279 Do not execute multiple setCurrentTime via waitForReadyState to avoid race condition @ dsilhavy
    #4239 Remove unusable key sessions when ProtectionController is stopped without waiting for session.close promise to be resolved @ dsilhavy
    #4246 Fixes for edge case errors that have been captured by Sentry IO around referencing null objects after reset has been called. @ littlespex
    #4211 Fix types of TestRequest URL property @ ondreian
    #4268 Added getTargetLiveDelay method to type definitions @ matvp91
    #4252 Fix wrong attribute in L2A rule @ dsilhavy
    #4253 Fix error in ProtectionModel_21Jan2015.js when closing key session @ dsilhavy
    #4223 Fix wrong Typescript definition of updateSource @ dsilhavy
    #4265 Check for "text/vtt" in catch block of SourceBufferSink.js @ dsilhavy
    #4273 Use fixed version of Chrome driver as latest one is unavailable @ dsilhavy
    #Link Upgrade browser-tools CircleCI orb to 1.4.2 to solve Chromedriver issue @ dsilhavy

    Others

    Link Change content steering sample stream URL @ dsilhavy
    Link Use license that doesnt expire in the Widevine sample @ dsilhavy
    Link Change MSS sample streams @ dsilhavy

from dashjs GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade dashjs from 4.7.2 to 4.7.4.

See this package in npm:
dashjs

See this project in Snyk:
https://app.snyk.io/org/shoutz0r-shared/project/71a76727-a61b-4cc8-aecd-bfff7773f421?utm_source=github&utm_medium=referral&page=upgrade-pr
Copy link

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/dashjs@4.7.4 network +17 47.4 MB dsilhavy

🚮 Removed packages: npm/dashjs@4.7.2)

View full report↗︎

Copy link

sonarcloud bot commented Aug 30, 2024

@xorinzor xorinzor closed this Aug 31, 2024
@xorinzor xorinzor deleted the snyk-upgrade-132c4dc87f8c7c79de60ccb4ee37aebb branch September 11, 2024 13:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants