Serraniel/AniwatchPlus
Serraniel/AniwatchPlus
1
0
Fork 0
Code Issues 9 Pull requests 8 Packages Projects Releases 10 Wiki Activity

Bump fast-xml-parser and is-svg #739

Open
dependabot[bot] wants to merge 1 commit from dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5 into develop
pull from: dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
merge into: Serraniel:develop
Conversation 0 Commits 1 Files changed 1 +33 -27
dependabot[bot] commented 2023-07-14 06:52:08 +02:00 (Migrated from github.com)
Copy link

Bumps fast-xml-parser and is-svg. These dependencies needed to be updated together.
Updates fast-xml-parser from 3.21.1 to 4.2.5

Release notes

Sourced from fast-xml-parser's releases.

Security Fix

Update to this release if you use entity parsing in Fast XML Parser.

v4

  • Generating different combined, parser only, builder only, validator only browser bundles
  • Keeping cjs modules as they can be imported in cjs and esm modules both. Otherwise refer esm branch.

4.0.0-beta.8 / 2021-12-13

  • call tagValueProcessor for stop nodes

4.0.0-beta.7 / 2021-12-09

  • fix Validator bug when an attribute has no value but '=' only
  • XML Builder should suppress unpaired tags by default.
  • documents update for missing features
  • refactoring to use Object.assign
  • refactoring to remove repeated code

4.0.0-beta.6 / 2021-12-05

  • Support PI Tags processing
  • Support suppressBooleanAttributes by XML Builder for attributes with value true.

4.0.0-beta.5 / 2021-12-04

  • fix: when a tag with name "attributes"

4.0.0-beta.4 / 2021-12-02

  • Support HTML document parsing
  • skip stop nodes parsing when building the XML from JS object
  • Support external entites without DOCTYPE
  • update dev dependency: strnum v1.0.5 to fix long number issue

4.0.0-beta.3 / 2021-11-30

  • support global stopNodes expression like "*.stop"
  • support self-closing and paired unpaired tags
  • fix: CDATA should not be parsed.
  • Fix typings for XMLBuilder (#396)(By Anders Emil Salvesen)
  • supports XML entities, HTML entities, DOCTYPE entities

⚠️ 4.0.0-beta.2 / 2021-11-19

  • rename attrMap to attibutes in parser output when preserveOrder:true
  • supports unpairedTags

⚠️ 4.0.0-beta.1 / 2021-11-18

  • Parser returns an array now
    • to make the structure common
    • and to return root level detail
  • renamed cdataTagName to cdataPropName
  • Added commentPropName
  • fix typings

⚠️ 4.0.0-beta.0 / 2021-11-16

... (truncated)

Changelog

Sourced from fast-xml-parser's changelog.

Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.

4.2.5 / 2023-06-22

  • change code implementation

4.2.4 / 2023-06-06

  • fix security bug

4.2.3 / 2023-06-05

  • fix security bug

4.2.2 / 2023-04-18

  • fix #562: fix unpaired tag when it comes in last of a nested tag. Also throw error when unpaired tag is used as closing tag

4.2.1 / 2023-04-18

  • fix: jpath after unpaired tags

4.2.0 / 2023-04-09

  • support updateTag parser property

4.1.4 / 2023-04-08

  • update typings to let user create XMLBuilder instance without options (#556) (By Patrick)
  • fix: IsArray option isn't parsing tags with 0 as value correctly #490 (#557) (By Aleksandr Murashkin)
  • feature: support oneListGroup to group repeated children tags udder single group

4.1.3 / 2023-02-26

  • fix #546: Support complex entity value

4.1.2 / 2023-02-12

  • Security Fix

4.1.1 / 2023-02-03

  • Fix #540: ignoreAttributes breaks unpairedTags
  • Refactor XML builder code

4.1.0 / 2023-02-02

  • Fix '' in DTD comment throwing an error. (#533) (By Adam Baker)
  • Set "eNotation" to 'true' as default

4.0.15 / 2023-01-25

  • make "eNotation" optional

4.0.14 / 2023-01-22

  • fixed: add missed typing "eNotation" to parse values

4.0.13 / 2023-01-07

4.0.12 / 2022-11-19

... (truncated)

Commits

Updates is-svg from 4.3.1 to 4.4.0

Release notes

Sourced from is-svg's releases.

v4.4.0

  • Update fast-xml-parser dependency (#35) 98725ee

https://github.com/sindresorhus/is-svg/compare/v4.3.2...v4.4.0

v4.3.2

  • Fix false-negative with linebreaks inside the SVG tag (#29) d46292d

https://github.com/sindresorhus/is-svg/compare/v4.3.1...v4.3.2

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) and [is-svg](https://github.com/sindresorhus/is-svg). These dependencies needed to be updated together. Updates `fast-xml-parser` from 3.21.1 to 4.2.5 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/NaturalIntelligence/fast-xml-parser/releases">fast-xml-parser's releases</a>.</em></p> <blockquote> <h2>Security Fix</h2> <p>Update to this release if you use entity parsing in Fast XML Parser.</p> <h2>v4</h2> <ul> <li>Generating different combined, parser only, builder only, validator only browser bundles</li> <li>Keeping cjs modules as they can be imported in cjs and esm modules both. Otherwise refer <code>esm</code> branch.</li> </ul> <p><strong>4.0.0-beta.8 / 2021-12-13</strong></p> <ul> <li>call tagValueProcessor for stop nodes</li> </ul> <p><strong>4.0.0-beta.7 / 2021-12-09</strong></p> <ul> <li>fix Validator bug when an attribute has no value but '=' only</li> <li>XML Builder should suppress unpaired tags by default.</li> <li>documents update for missing features</li> <li>refactoring to use Object.assign</li> <li>refactoring to remove repeated code</li> </ul> <p><strong>4.0.0-beta.6 / 2021-12-05</strong></p> <ul> <li>Support PI Tags processing</li> <li>Support <code>suppressBooleanAttributes</code> by XML Builder for attributes with value <code>true</code>.</li> </ul> <p><strong>4.0.0-beta.5 / 2021-12-04</strong></p> <ul> <li>fix: when a tag with name &quot;attributes&quot;</li> </ul> <p><strong>4.0.0-beta.4 / 2021-12-02</strong></p> <ul> <li>Support HTML document parsing</li> <li>skip stop nodes parsing when building the XML from JS object</li> <li>Support external entites without DOCTYPE</li> <li>update dev dependency: strnum v1.0.5 to fix long number issue</li> </ul> <p><strong>4.0.0-beta.3 / 2021-11-30</strong></p> <ul> <li>support global stopNodes expression like &quot;*.stop&quot;</li> <li>support self-closing and paired unpaired tags</li> <li>fix: CDATA should not be parsed.</li> <li>Fix typings for XMLBuilder (<a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/396">#396</a>)(By <a href="https://github.com/andersem">Anders Emil Salvesen</a>)</li> <li>supports XML entities, HTML entities, DOCTYPE entities</li> </ul> <p><strong>⚠️ 4.0.0-beta.2 / 2021-11-19</strong></p> <ul> <li>rename <code>attrMap</code> to <code>attibutes</code> in parser output when <code>preserveOrder:true</code></li> <li>supports unpairedTags</li> </ul> <p><strong>⚠️ 4.0.0-beta.1 / 2021-11-18</strong></p> <ul> <li>Parser returns an array now <ul> <li>to make the structure common</li> <li>and to return root level detail</li> </ul> </li> <li>renamed <code>cdataTagName</code> to <code>cdataPropName</code></li> <li>Added <code>commentPropName</code></li> <li>fix typings</li> </ul> <p><strong>⚠️ 4.0.0-beta.0 / 2021-11-16</strong></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md">fast-xml-parser's changelog</a>.</em></p> <blockquote> <p>Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.</p> <p><strong>4.2.5 / 2023-06-22</strong></p> <ul> <li>change code implementation</li> </ul> <p><strong>4.2.4 / 2023-06-06</strong></p> <ul> <li>fix security bug</li> </ul> <p><strong>4.2.3 / 2023-06-05</strong></p> <ul> <li>fix security bug</li> </ul> <p><strong>4.2.2 / 2023-04-18</strong></p> <ul> <li>fix <a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/562">#562</a>: fix unpaired tag when it comes in last of a nested tag. Also throw error when unpaired tag is used as closing tag</li> </ul> <p><strong>4.2.1 / 2023-04-18</strong></p> <ul> <li>fix: jpath after unpaired tags</li> </ul> <p><strong>4.2.0 / 2023-04-09</strong></p> <ul> <li>support <code>updateTag</code> parser property</li> </ul> <p><strong>4.1.4 / 2023-04-08</strong></p> <ul> <li>update typings to let user create XMLBuilder instance without options (<a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/556">#556</a>) (By <a href="https://github.com/omggga">Patrick</a>)</li> <li>fix: IsArray option isn't parsing tags with 0 as value correctly <a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/490">#490</a> (<a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/557">#557</a>) (By <a href="https://github.com/p-kuen">Aleksandr Murashkin</a>)</li> <li>feature: support <code>oneListGroup</code> to group repeated children tags udder single group</li> </ul> <p><strong>4.1.3 / 2023-02-26</strong></p> <ul> <li>fix <a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/546">#546</a>: Support complex entity value</li> </ul> <p><strong>4.1.2 / 2023-02-12</strong></p> <ul> <li>Security Fix</li> </ul> <p><strong>4.1.1 / 2023-02-03</strong></p> <ul> <li>Fix <a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/540">#540</a>: ignoreAttributes breaks unpairedTags</li> <li>Refactor XML builder code</li> </ul> <p><strong>4.1.0 / 2023-02-02</strong></p> <ul> <li>Fix '<!-- raw HTML omitted -->' in DTD comment throwing an error. (<a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/533">#533</a>) (By <a href="https://github.com/Cwazywierdo">Adam Baker</a>)</li> <li>Set &quot;eNotation&quot; to 'true' as default</li> </ul> <p><strong>4.0.15 / 2023-01-25</strong></p> <ul> <li>make &quot;eNotation&quot; optional</li> </ul> <p><strong>4.0.14 / 2023-01-22</strong></p> <ul> <li>fixed: add missed typing &quot;eNotation&quot; to parse values</li> </ul> <p><strong>4.0.13 / 2023-01-07</strong></p> <ul> <li>preserveorder formatting (By <a href="https://github.com/mdeknowis">mdeknowis</a>)</li> <li>support <code>transformAttributeName</code> (By <a href="https://github.com/erkie">Erik Rothoff Andersson</a>)</li> </ul> <p><strong>4.0.12 / 2022-11-19</strong></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/643816d67b4c8b85ff97ba83e9bf41d23446c963"><code>643816d</code></a> update package details</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/cc73065e1469147a0104dc122b0cdf6724354446"><code>cc73065</code></a> Remove unused code (<a href="https://redirect.github.com/NaturalIntelligence/fast-xml-parser/issues/587">#587</a>)</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/9a880b887916855c3a510869fd1ee268d7fe58b1"><code>9a880b8</code></a> Merge pull request from GHSA-gpv5-7x3g-ghjv</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/ecf6016f9b48aec1a921e673158be0773d07283e"><code>ecf6016</code></a> update package</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/0955739fc404fbb048002920bdaec2d3e469308d"><code>0955739</code></a> fix: security bug</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/abfee160e4664e96742c85532fa6b92d97db1c48"><code>abfee16</code></a> update package detail</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/39b0e050bb909e8499478657f84a3076e39ce76c"><code>39b0e05</code></a> fix security bug</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/e7728af371812895f6aacd1a6dd536c0367e5f17"><code>e7728af</code></a> update funding detail</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/c7b3cea4ead020c21d39e135a50348208829e971"><code>c7b3cea</code></a> update package detail</li> <li><a href="https://github.com/NaturalIntelligence/fast-xml-parser/commit/6511e07f8ee3a88c93caf10f7d20f792069d1429"><code>6511e07</code></a> fix unpaired tag</li> <li>Additional commits viewable in <a href="https://github.com/NaturalIntelligence/fast-xml-parser/compare/v3.21.1...v4.2.5">compare view</a></li> </ul> </details> <br /> Updates `is-svg` from 4.3.1 to 4.4.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sindresorhus/is-svg/releases">is-svg's releases</a>.</em></p> <blockquote> <h2>v4.4.0</h2> <ul> <li>Update <code>fast-xml-parser</code> dependency (<a href="https://redirect.github.com/sindresorhus/is-svg/issues/35">#35</a>) 98725ee</li> </ul> <p><a href="https://github.com/sindresorhus/is-svg/compare/v4.3.2...v4.4.0">https://github.com/sindresorhus/is-svg/compare/v4.3.2...v4.4.0</a></p> <h2>v4.3.2</h2> <ul> <li>Fix false-negative with linebreaks inside the SVG tag (<a href="https://redirect.github.com/sindresorhus/is-svg/issues/29">#29</a>) d46292d</li> </ul> <p><a href="https://github.com/sindresorhus/is-svg/compare/v4.3.1...v4.3.2">https://github.com/sindresorhus/is-svg/compare/v4.3.1...v4.3.2</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sindresorhus/is-svg/commit/35aeafd2b0c8f119a7b2130e6f67172baa1c2fa5"><code>35aeafd</code></a> 4.4.0</li> <li><a href="https://github.com/sindresorhus/is-svg/commit/98725ee291ad8d2c2601a9e640e8bb39c9dc5ca2"><code>98725ee</code></a> Update <code>fast-xml-parser</code> dependency (<a href="https://redirect.github.com/sindresorhus/is-svg/issues/35">#35</a>)</li> <li><a href="https://github.com/sindresorhus/is-svg/commit/d01521d9a12327a7e0e4f670ed8401710dc7f191"><code>d01521d</code></a> 4.3.2</li> <li><a href="https://github.com/sindresorhus/is-svg/commit/539eaa19da092ee27461bd00ff448f6e6d7e94ed"><code>539eaa1</code></a> Meta tweaks</li> <li><a href="https://github.com/sindresorhus/is-svg/commit/d46292d23fa4fa265fa9587cbd23e175cd5b5150"><code>d46292d</code></a> Fix false-negative with linebreaks inside the SVG tag (<a href="https://redirect.github.com/sindresorhus/is-svg/issues/29">#29</a>)</li> <li>See full diff in <a href="https://github.com/sindresorhus/is-svg/compare/v4.3.1...v4.4.0">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Serraniel/AniwatchPlus/network/alerts). </details>
This pull request can be merged automatically.
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5:dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
git checkout dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5

Merge

Merge the changes and update on Forgejo.
git checkout develop
git merge --no-ff dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
git checkout develop
git merge --ff-only dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
git checkout dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
git rebase develop
git checkout develop
git merge --no-ff dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
git checkout develop
git merge --squash dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
git checkout develop
git merge --ff-only dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
git checkout develop
git merge dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5
git push origin develop
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
dependencies

Pull requests that update a dependency file

  
Priority: Critical

Critical issue.

  
Priority: High

High priority issue.

  
Priority: Low

Low priority issue.

  
Priority: Medium

Average priority issue.

  
State: Abandoned

Issue will not be implemented.

  
State: Blocked

Issue is blocked by another issue.

  
State: Completed

Issue has been fixed or implemented and version has been released.

  
State: In progress

Issue in development.

  
State: New

New items which hasn´t been sighted yet.

  
State: On Hold

Issue is currently on hold.

  
State: Pending

Item is pending for some reason.

  
State: Review needed

Issue needs to be reviewed.

  
State: Waiting for release

Issue is completed but there is no release version available yet.

  
Type: Bug

The issue describes a bug in the project.

  
Type: Enhancement

The issues describes a new feature or some other kind of enhancement for the project.

  
Type: Maintenance

The issue describes some kind of maintenance which has to be done for the project or repository.

  
Type: Question

The issue is a question.

No labels
dependencies
Priority: Critical
Priority: High
Priority: Low
Priority: Medium
State: Abandoned
State: Blocked
State: Completed
State: In progress
State: New
State: On Hold
State: Pending
State: Review needed
State: Waiting for release
Type: Bug
Type: Enhancement
Type: Maintenance
Type: Question
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: Serraniel/AniwatchPlus#739
No description provided.
Delete branch "dependabot/npm_and_yarn/fast-xml-parser-and-is-svg-4.2.5"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?