Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency @xmldom/xmldom to ^0.8.0 - autoclosed #54

Closed
wants to merge 1 commit into from
Closed

Update dependency @xmldom/xmldom to ^0.8.0 - autoclosed #54

wants to merge 1 commit into from

Conversation

mend-app-cvent[bot]
Copy link
Contributor

@mend-app-cvent mend-app-cvent bot commented Oct 14, 2022
edited
Loading

This PR contains the following updates:

Package Type Update Change
@xmldom/xmldom dependencies minor ^0.7.0 -> ^0.8.0

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
High 9.8 CVE-2022-37616 #52

Release Notes

xmldom/xmldom

v0.8.3

Compare Source

Fixed
  • Avoid iterating over prototype properties #437 / #436

Thank you, @​Supraja9726 for your contributions

v0.8.2

Compare Source

Fixed
  • fix(dom): Serialize > as specified (#​395) #58
Other
  • docs: Add nodeType values to public interface description #396
  • test: Add executable examples for node and typescript #317
  • fix(dom): Serialize > as specified #395
  • chore: Add minimal Object.assign ponyfill #379
  • docs: Refine release documentation #378
  • chore: update various dev dependencies

Thank you @​niklasl, @​cburatto, @​SheetJSDev, @​pyrsmk for your contributions

v0.8.1

Compare Source

Fixes
  • Only use own properties in entityMap #374
Docs
  • Add security policy #365
  • changelog: Correct contributor name and link #366
  • Describe release/publish steps #358, #376
  • Add snyk package health badge #360

v0.8.0

Compare Source

Fixed
  • Normalize all line endings according to XML specs 1.0 and 1.1
    BREAKING CHANGE: Certain combination of line break characters are normalized to a single \n before parsing takes place and will no longer be preserved.
  • XMLSerializer: Preserve whitespace character references #284 / #310
    BREAKING CHANGE: If you relied on the not spec compliant preservation of literal \t, \n or \r in attribute values.
    To preserve those you will have to create XML that instead contains the correct numerical (or hexadecimal) equivalent (e.g. 	, 
, 
).
  • Drop deprecated exports DOMImplementation and XMLSerializer from lib/dom-parser.js #​53 / #309
    BREAKING CHANGE: Use the one provided by the main package export.
  • dom: Remove all links as part of removeChild #343 / #355
Chore
  • ci: Restore latest tested node version to 16.x #325
  • ci: Split test and lint steps into jobs #111 / #304
  • Pinned and updated devDependencies

Thank you @​marrus-sh, @​victorandree, @​mdierolf, @​tsabbay, @​fatihpense for your contributions

v0.7.6

Compare Source

Fixed
  • Avoid iterating over prototype properties #441 / #437 / #436

Thank you, @​jftanner, @​Supraja9726 for your contributions

v0.7.5

Compare Source

Commits

Fixes:

v0.7.4

Compare Source

Commits

Fixes:

v0.7.3

Compare Source

Commits

Fixes:
Refactor:
  • Improve exports & require statements, new main package entry #233
Docs:
  • Fix Stryker badge #298
  • Fix link to help-wanted issues #299
Chore:
  • Execute stryker:dry-run on branches #302
  • Fix stryker config #300
  • Split test and lint scripts #297
  • Switch to stryker dashboard owned by org #292

v0.7.2

Compare Source

Commits

Fixes:
  • Types: Add index.d.ts to packaged files #288
    Thank you, @​forty

v0.7.1

Compare Source

Commits

Fixes:
Chore:
  • package.json: remove author, maintainers, etc. #279
  • If you want to rebase/retry this PR, click this checkbox.

@mend-app-cvent mend-app-cvent bot requested a review from a team as a code owner October 14, 2022 20:28
@mend-app-cvent mend-app-cvent bot added the security fix Security fix generated by WhiteSource label Oct 14, 2022
@mend-app-cvent mend-app-cvent bot changed the title Update dependency @xmldom/xmldom to ^0.8.0 Update dependency @xmldom/xmldom to ^0.8.0 - autoclosed Oct 16, 2022
@mend-app-cvent mend-app-cvent bot closed this Oct 16, 2022
@mend-app-cvent mend-app-cvent bot deleted the whitesource-remediate/xmldom-xmldom-0.x branch October 16, 2022 17:11
@mend-app-cvent mend-app-cvent bot changed the title Update dependency @xmldom/xmldom to ^0.8.0 - autoclosed Update dependency @xmldom/xmldom to ^0.8.0 Oct 16, 2022
@mend-app-cvent mend-app-cvent bot reopened this Oct 16, 2022
@mend-app-cvent mend-app-cvent bot restored the whitesource-remediate/xmldom-xmldom-0.x branch October 16, 2022 18:11
@mend-app-cvent mend-app-cvent bot changed the title Update dependency @xmldom/xmldom to ^0.8.0 Update dependency @xmldom/xmldom to ^0.8.0 - autoclosed Oct 21, 2022
@mend-app-cvent mend-app-cvent bot closed this Oct 21, 2022
@mend-app-cvent mend-app-cvent bot deleted the whitesource-remediate/xmldom-xmldom-0.x branch October 21, 2022 15:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by WhiteSource
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants