react-rainbow
react-rainbow copied to clipboard
chore(deps): bump xlsx from 0.14.5 to 0.17.0
Bumps xlsx from 0.14.5 to 0.17.0.
Changelog
Sourced from xlsx's changelog.
CHANGELOG
This log is intended to keep track of backwards-incompatible changes, including but not limited to API changes and file location changes. Minor behavioral changes may not be included if they are not expected to break existing code.
v0.16.2
- Disabled
PRN
parsing by default (better support for CSV without delimeters)v0.16.1
- skip empty custom property tags if data is absent (fixes DocSecurity issue)
- HTML output add raw value, type, number format
- DOM parse look for
v
/t
/z
attributes when determining value- double quotes in properties escaped using
_x0022_
- changed AMD structure for NetSuite and other RequireJS implementations
encode_cell
anddecode_cell
do not rely onencode_col
/decode_col
v0.16.0
- Date handling changed
- XLML certain tag tests are now case insensitive
- Fixed potentially vulnerable regular expressions
v0.15.6
- CFB prevent infinite loop
- ODS empty cells marked as stub (type "z")
cellStyles
option impliessheetStubs
v0.15.5
sheets
parse option to specify which sheets to parsev0.15.4
- AOA utilities properly preserve number formats
- Number formats captured in stub cells
v0.15.3
- Properties and Custom Properties properly XML-encoded
v0.15.2
sheet_get_cell
utility functionsheet_to_json
explicitly supportnull
as alias for default behaviorencode_col
throw on negative column index- HTML properly handle whitespace around tags in a run
... (truncated)
Commits
- See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) -
@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language -
@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language -
@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language -
@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
Chore
- deps: bump xlsx from 0.14.5 to 0.17.0 (b6d8b0d)
Contributors
dependabot[bot], LeandroTorresSicilia
Commit-Lint commands
You can trigger Commit-Lint actions by commenting on this PR:
-
@Commit-Lint merge patch
will merge dependabot PR on "patch" versions (X.X.Y - Y change) -
@Commit-Lint merge minor
will merge dependabot PR on "minor" versions (X.Y.Y - Y change) -
@Commit-Lint merge major
will merge dependabot PR on "major" versions (Y.Y.Y - Y change) -
@Commit-Lint merge disable
will desactivate merge dependabot PR -
@Commit-Lint review
will approve dependabot PR -
@Commit-Lint stop review
will stop approve dependabot PR
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
1 out of 2 committers have signed the CLA.
:white_check_mark: LeandroTorresSicilia
:x: dependabot[bot]
You have signed the CLA already but the status is still pending? Let us recheck it.
Code Climate has analyzed commit b6d8b0d9 and detected 0 issues on this pull request.
View more on Code Climate.
Visit the preview URL for this PR (updated for commit e50ee13):
https://react-rainbow--pr2265-dependabot-npm-and-y-kplvu646.web.app
(expires Fri, 30 Jul 2021 03:25:54 GMT)
🔥 via Firebase Hosting GitHub Action 🌎
A newer version of xlsx exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.