Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade sass from 1.49.9 to 1.52.3 #309

Closed

Conversation

snyk-bot
Copy link
Contributor

@snyk-bot snyk-bot commented Jul 6, 2022

Snyk has created this PR to upgrade sass from 1.49.9 to 1.52.3.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 9 versions ahead of your current version.
  • The recommended version was released a month ago, on 2022-06-08.
Release notes
Package name: sass
  • 1.52.3 - 2022-06-08

    To install Sass 1.52.3, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

    Changes

    • Fix crash when trailing loud comments (/* ... */) appear twice in a row across two different imports which themselves imported the same file each.

    See the full changelog for changes in earlier releases.

  • 1.52.2 - 2022-06-03

    To install Sass 1.52.2, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

    Changes

    • Preserve location of trailing loud comments (/* ... */) instead of pushing the comment to the next line.

    See the full changelog for changes in earlier releases.

  • 1.52.1 - 2022-05-20

    To install Sass 1.52.1, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

    Changes

    Command Line Interface

    • Fix a bug where --watch mode would close immediately in TTY mode. This was caused by our change to close --watch when stdin was closed outside of TTY mode, which has been reverted for now while we work on a fix.

    See the full changelog for changes in earlier releases.

  • 1.52.0 - 2022-05-20

    To install Sass 1.52.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

    Changes

    • Add support for arbitrary modifiers at the end of plain CSS imports, in addition to the existing supports() and media queries. Sass now allows any sequence of identifiers of functions after the URL of an import for forwards compatibility with future additions to the CSS spec.

    • Fix an issue where source locations tracked through variable references could potentially become incorrect.

    • Fix a bug where a loud comment in the source can break the source map when embedding the sources, when using the command-line interface or the legacy JS API.

    JS API

    • SassNumber.assertUnit() and SassNumber.assertNoUnits() now correctly return the number called on when it passes the assertion.

    See the full changelog for changes in earlier releases.

  • 1.51.0 - 2022-04-26

    To install Sass 1.51.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

    Changes

    • Potentially breaking change: Change the order of maps returned by map.deep-merge() to match those returned by map.merge(). All keys that appeared in the first map will now be listed first in the same order they appeared in that map, followed by any new keys added from the second map.

    • Improve the string output of some AST nodes in error messages.

    See the full changelog for changes in earlier releases.

  • 1.50.1 - 2022-04-19
  • 1.50.0 - 2022-04-07
  • 1.49.11 - 2022-04-01
  • 1.49.10 - 2022-03-30
  • 1.49.9 - 2022-02-24
from sass GitHub release notes
Commit messages
Package name: sass

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@blacklight blacklight closed this Aug 3, 2022
@blacklight blacklight deleted the snyk-upgrade-2bf5524444d9517f9d6f0093d91cf7c9 branch August 3, 2022 23:05
blacklight added a commit that referenced this pull request Feb 28, 2024
The `cwiid` library and the Python bindings haven't been updated in
years, the `cwiid-git` package on Arch Linux still targets Python 2, and
installing `cwiid` via `pip` breaks recent versions of Python 3.

Closes: #309
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants