Bump reveal.js from 3.8.0 to 4.3.0 in /contributing

[dependabot[bot]]

Bumps reveal.js from 3.8.0 to 4.3.0.

Release notes

Sourced from reveal.js's releases.

4.3.0

tldr — self-destruction and bug fixes 💣

Changes

• It's now possible to destroy/uninitialize a reveal.js presentation. This will remove all event listeners and roll back all changes made to the DOM. It will also unregister all plugins and destroy them if they expose a destroy method. (#1145 / @​hakimel)

  Reveal.destroy();
  

• You can now provide an absolute URL to the presentation that should be loaded in the speaker view. This is useful if you have a presentation integrated as part of a web page but still want the speaker view to work.

  Reveal.initialize({ url: 'https://example.com/my-reveal-presentation' })
  

• Source maps are now included in dist (#3082 / @​dabrahams)

Fixes

• Fix the speaker view no longer goes out of sync with your presentation after live-reloading (#2822 / @​hakimel).
• Fix XSS vulnerability in speaker view (#3137 / @​r0hanSH)
• Fix issues with scaling embedded presentations when entering fullscreen mode in Safari (#3080 / @​Martinomagnifico)

4.2.1

Bug fix release 🐛

Fixes

• Fix an issue where some slides disappeared (fully or partially) after slide transitions in Chrome (9e583b8df4edecb94cb89f012ae5c80014a859ee @​hakimel)
• Fix an issue that caused double-navigations and impacted presentation performance (@​hakimel #3079)
• Fix --host not working in npm start -- --host=0.0.0.0 (@​cashcat #3075)
• Fix incorrect sizing of auto-sized text in PDF exports (hakimel/reveal.js#2865 @​hakimel)
• Fix background video playback issue in some browsers by inferring MIME type from file extension (#3078 @​vanch3d)

4.2.0

Changes

• The math plugin now supports three typesetting libraries: KaTeX, MathJax 2 and MathJax 3. We continue to use MathJax 2 as our default so this is fully backwards compatible. Learn how to choose between typesetters and how to configure them in the docs at https://revealjs.com/math#typesetting-libraries (@​burgerga in #2559).
• New event: beforeslidechange (#3003). This makes it possible to conditionally prevent navigations:

  // This prevents all slide changes
  Reveal.addEventListener( 'beforeslidechange', e => e.preventDefault() );
  

• New keyboard shortcut for skipping fragments while navigating: alt + ←/↑/→/↓.
• New API option for skipping fragments in directional navigation Reveal.right({ skipFragments: true }).
• Adds a beforeHighlight callback to the highlight plugin (@​rajgoel in #3026).

  Reveal.initialize({ 
    highlight: {
      beforeHighlight: (hljs) => {
        // interact with highlight.js, for example to register a new language
      }
    } 
  })
  

• Code line numbers can now start from an offset (#3050). For example, this code block would begin its line numbering from 10: <code data-ln-start-from="10">.

... (truncated)

Commits

• 853764b 4.3.0
• e325cea dependency update
• ffd533c 4.2.2
• c83c685 rebuild notes plugin when html changes
• c47bf21 Merge pull request #3137 from r0hanSH/fix_dom_xss
• 32cdd3b Fix DOM XSS
• e33c3c7 the speaker view presentation URL can be overridden via (needed for reveal.j...
• 5e12c6a additional cleanup when destroying #1145
• 1e0cbe6 reveal.js can now be uninitialized by calling Reveal.destroy() #1145 #3134
• ff20051 fiv out of sync speaker view after presentation reloads #2822 #3032
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.