embetty

embetty copied to clipboard

Bumps [terser](https://github.com/terser/terser) from 4.8.0 to 4.8.1. Changelog Sourced from terser's changelog. v4.8.1 (backport) Security fix for RegExps that should not be evaluated (regexp DDOS) Commits See full diff in compare...

dependabot[bot]

Hello, I would like to embed a dynamic geographic map on my webpage with some kind of two click solution, so that the users are asked before open street map...

stefaneidelloth

Bumps [semantic-release](https://github.com/semantic-release/semantic-release) from 17.4.3 to 19.0.3. Release notes Sourced from semantic-release's releases. v19.0.3 19.0.3 (2022-06-09) Bug Fixes log-repo: use the original form of the repo url to remove the need...

dependabot[bot]

Bumps [semver-regex](https://github.com/sindresorhus/semver-regex) from 3.1.2 to 3.1.4. Release notes Sourced from semver-regex's releases. v3.1.4 Backport of ReDoS fix https://github.com/sindresorhus/semver-regex/commit/7712ba564d40da101cf2b2b33e6a910d9f2f57f4 Commits 906cf40 3.1.4 7712ba5 Fix ReDoS vulnerability backport a0203db Fix ReDoS vulnerability...

dependabot[bot]

Bumps [eventsource](https://github.com/EventSource/eventsource) from 1.1.0 to 1.1.1. Changelog Sourced from eventsource's changelog. 1.1.1 Do not include authorization and cookie headers on redirect to different origin (#273 Espen Hovlandsdal) Commits aa7a408 1.1.1...

dependabot[bot]

Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.1 to 2.6.7. Release notes Sourced from node-fetch's releases. v2.6.7 Security patch release Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th...

dependabot[bot]

Bumps [trim-off-newlines](https://github.com/stevemao/trim-off-newlines) from 1.0.1 to 1.0.3. Commits c3b28d3 1.0.3 6226c95 Merge pull request #4 from Trott/fix-it-again c77691d fix: remediate ReDOS further 76ca93c chore: pin mocha to version that works with...

dependabot[bot]

Bumps [async](https://github.com/caolan/async) from 2.6.3 to 2.6.4. Changelog Sourced from async's changelog. v2.6.4 Fix potential prototype pollution exploit (#1828) Commits c6bdaca Version 2.6.4 8870da9 Update built files 4df6754 update changelog 8f7f903...

dependabot[bot]

Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...

dependabot[bot]

Feature/support twitter videos

4

### Summary This PR changes the handling of twitter posts with embedded videos. Instead of linking to a still image of the video, a HTML video element (with `preload="none"` for...

djmaze