Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency bootstrap to v4.3.1 #39

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update dependency bootstrap to v4.3.1 #39

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link

@mend-for-github-com mend-for-github-com bot commented Jul 6, 2022
edited

This PR contains the following updates:

Package Type Update Change
bootstrap (source) dependencies minor 4.1.3 -> 4.3.1

By merging this PR, the issue #30 will be automatically resolved and closed:

Severity CVSS Score CVE
Medium Medium 6.1 CVE-2019-8331

Release Notes

twbs/bootstrap (bootstrap)

v4.3.1

Compare Source

  • Security: Fixed an XSS vulnerability (CVE-2019-8331) in our tooltip and popover plugins by implementing a new HTML sanitizer
  • Fixed a small issue with our RFS (responsive font sizes) mixins

v4.3.0

Compare Source

Highlights
  • New: Added .stretched-link utility to make any anchor the size of it's nearest position: relative parent, perfect for entirely clickable cards!
  • New: Added .text-break utility for applying word-break: break-word
  • New: Added .rounded-sm and .rounded-lg for small and large border-radius.
  • New: Added .modal-dialog-scrollable modifier class for scrolling content within a modal.
  • New: Added responsive .list-group-horizontal modifier classes for displaying list groups as a horizontal row.
  • Improved: Reduced our compiled CSS by using null for variables that by default inherit their values from other elements (e.g., $headings-color was inherit and is now null until you modifier it in your custom CSS).
  • Improved: Badge focus styles now match their background-color like our buttons.
  • Fixed: Silenced bad selectors in our JS plugins for the href HTML attribute to avoid JavaScript errors. Please try to use valid selectors or the data-target HTML attribute/target option where available.
  • Fixed: Reverted v4.2.1's change to the breakpoint and grid container Sass maps that blocked folks from upgrading when modifying those default variables.
  • Fixed: Restored white-space: nowrap to .dropdown-toggle (before v4.2.1 it was on all .btns) so carets don't wrap to new lines.
  • Deprecated: img-retina, invisible, float, and size mixins are now deprecated and will be removed in v5.
Links

v4.2.1

Compare Source

Bump to v4.2.1 to republish package on npm. See v4.2.0 release notes for changes introduced in v4.2.

  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label Jul 6, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch from 1e8d639 to 19b4b62 Compare November 20, 2022 20:36
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch from 19b4b62 to 98a6c1f Compare November 29, 2022 01:29
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch from 98a6c1f to ed833cd Compare December 6, 2022 13:45
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch 2 times, most recently from 368ab69 to 74e12f3 Compare January 4, 2023 21:04
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch 2 times, most recently from e75560e to 32082bc Compare January 10, 2023 16:50
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch 3 times, most recently from 6215112 to 544ef1a Compare January 21, 2023 13:20
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch from 544ef1a to d15cd1e Compare January 25, 2023 05:32
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch from 0b0a82f to 24273ea Compare February 5, 2023 11:46
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch from 24273ea to df7194c Compare February 16, 2023 03:24
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/bootstrap-4.x-lockfile branch from df7194c to c506190 Compare March 13, 2023 22:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants