rust-react-typescript-demo
rust-react-typescript-demo copied to clipboard
Bump is-svg from 3.0.0 to 4.3.2 in /foodi-frontend
Bumps is-svg from 3.0.0 to 4.3.2.
Release notes
Sourced from is-svg's releases.
v4.3.2
- Fix false-negative with linebreaks inside the SVG tag (#29) d46292d
https://github.com/sindresorhus/is-svg/compare/v4.3.1...v4.3.2
v4.3.1
- Remove leftover
console.log
b8ebc78https://github.com/sindresorhus/is-svg/compare/v4.3.0...v4.3.1
v4.3.0
- Improve performance and accuracy 732fc72
- 4.2.2 did not 100% fix the ReDoS. This version does.
https://github.com/sindresorhus/is-svg/compare/v4.2.2...v4.3.0
v4.2.2
- Partly fix ReDoS vulnerability 01f8a08
- You are only affected if you use this package on a server that accepts SVG as user-input.
- CVE-2021-28092
https://github.com/sindresorhus/is-svg/compare/v4.2.1...v4.2.2
v4.2.1
- Fix false-positive when the
<!Entity>
tag contains markup (#24) f8e39a8https://github.com/sindresorhus/is-svg/compare/v4.2.0...v4.2.1
v4.2.0
- Allow self-closing SVG tag (#18) 23d6d27
https://github.com/sindresorhus/is-svg/compare/v4.1.0...v4.2.0
v4.1.0
- Refactor TypeScript definition to CommonJS compatible export (#21) 96ab233
https://github.com/sindresorhus/is-svg/compare/v4.0.0...v4.1.0
v4.0.0
Breaking:
- Require Node.js 6
Enhancements:
- Add TypeScript definition (#20) 7f4af70
https://github.com/sindresorhus/is-svg/compare/v3.0.0...v4.0.0
Commits
d01521d
4.3.2539eaa1
Meta tweaksd46292d
Fix false-negative with linebreaks inside the SVG tag (#29)034967d
4.3.1b8ebc78
Remove leftover5faec9e
4.3.0732fc72
Improve performance and accuracy1f34e79
4.2.201f8a08
Fix ReDoS vulnerability3c99615
Move to GitHub Actions- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)