[Snyk] Upgrade codemirror from 5.50.0 to 5.61.1 #1
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade codemirror from 5.50.0 to 5.61.1. See this package in npm: https://www.npmjs.com/package/codemirror See this project in Snyk: https://app.snyk.io/org/bjones1/project/68bea344-f04b-4e33-900b-06b215fc8fb1?utm_source=github&utm_medium=upgrade-pr
bjones1
pushed a commit
that referenced
this pull request
Jun 7, 2022
Since the git protocol is in no more use. Line: 67
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade codemirror from 5.50.0 to 5.61.1.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-CODEMIRROR-1016937
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-CODEMIRROR-569611
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: codemirror
-
5.61.1 - 2021-05-20
-
5.61.0 - 2021-04-20
-
5.60.0 - 2021-03-20
-
5.59.4 - 2021-02-24
-
5.59.3 - 2021-02-20
-
5.59.2 - 2021-01-20
-
5.59.1 - 2020-12-31
-
5.59.0 - 2020-12-20
-
5.58.3 - 2020-11-19
-
5.58.2 - 2020-10-23
-
5.58.1 - 2020-09-23
-
5.58.0 - 2020-09-21
-
5.57.0 - 2020-08-20
-
5.56.0 - 2020-07-20
-
5.55.0 - 2020-06-21
-
5.54.0 - 2020-05-20
-
5.53.2 - 2020-04-21
-
5.53.0 - 2020-04-21
-
5.52.2 - 2020-03-20
-
5.52.0 - 2020-02-20
-
5.51.0 - 2020-01-20
-
5.50.2 - 2020-01-01
-
5.50.0 - 2019-12-20
from codemirror GitHub release notesVersion 5.61.1
Bug fixes
Fix a bug where changing the editor's document could confuse text-direction management.
Fix a bug in horizontally scrolling the cursor into view.
Optimize adding lots of marks in a single transaction.
simple mode addon: Support regexps with a unicode flag.
javascript mode: Add support for TypeScript template string types, improve integration with JSX mode.
Version 5.61.0
Bug fixes
Improve support for being in a shadow DOM in contenteditable mode.
Prevent line number from being read by screen readers.
show-hint addon: Fix a crash caused by a race condition.
javascript mode: Improve scope tracking.
New features
The library now emits an
"updateGutter"event when the gutter width changes.emacs bindings: Provide named commands for all bindings.
Version 5.60.0
Bug fixes
Fix autofocus feature in contenteditable mode.
simple mode addon: Fix a null-dereference crash.
multiplex addon: Make it possible to use
parseDelimiterswhen both delimiters are the same.julia mode: Fix a lockup bug.
New features
setSelectionsnow allows ranges to omit theheadproperty when it is equal toanchor.sublime bindings: Add support for reverse line sorting.
Version 5.59.4
Bug fixes
Give the scrollbar corner filler a background again, to prevent content from peeping through between the scrollbars.
Version 5.59.3
Bug fixes
Don't override the way zero-with non-joiners are rendered.
Fix an issue where resetting the history cleared the
undoDepthoption's value.vim bindings: Fix substitute command when joining and splitting lines, fix global command when line number change, add support for
:vglobal, properly treat caps lock as a modifier key.Version 5.59.2
Bug fixes
Don't try to scroll the selection into view in
readonly: "nocursor"mode.closebrackets addon: Fix a regression in the behavior of pressing enter between brackets.
javascript mode: Fix an infinite loop on specific syntax errors in object types.
various modes: Fix inefficient RegExp matching.
Version 5.59.1
Bug fixes
Fix an issue where some Chrome browsers were detected as iOS.
Version 5.59.0
Bug fixes
Fix platform detection on recent iPadOS.
lint addon: Don't show duplicate messages for a given line.
clojure mode: Fix regexp that matched in exponential time for some inputs.
hardwrap addon: Improve handling of words that are longer than the line length.
matchbrackets addon: Fix leaked event handler on disabling the addon.
New features
search addon: Make it possible to configure the search addon to show the dialog at the bottom of the editor.
Version 5.58.3
Bug fixes
Suppress quick-firing of blur-focus events when dragging and clicking on Internet Explorer.
Fix the
insertAtoption toaddLineWidgetto actually allow the widget to be placed after all widgets for the line.soy mode: Support
@ Attributeand element composition.shell mode: Support heredoc quoting.
Commit messages
Package name: codemirror
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs