[Snyk] Upgrade htmlparser2 from 4.1.0 to 7.2.0

[snyk-bot]

Snyk has created this PR to upgrade htmlparser2 from 4.1.0 to 7.2.0.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 10 versions ahead of your current version.
• The recommended version was released 3 months ago, on 2021-11-11.

Release notes

Package name: htmlparser2

• 7.2.0 - 2021-11-11

  What's Changed

  Fixes:

  • Decode entities after < by @ fb55 in #1008
  • Stringify non-string chunks by @ fb55 in #1010

  Docs

  • docs(readme): make parseDocument() example clearer by @ cameronsteele in #998

  Refactors:

  • Introduce sequences & fast forwarding by @ fb55 in #1007
  • Emit text before entities once entity is confirmed by @ fb55 in #1009

  The refactors lead to a combined ~5% speed-up.

  New Contributors

  • @ cameronsteele made their first contribution in #998

  Full Changelog: v7.1.2...v7.2.0

• 7.1.2 - 2021-09-11
  • Fix indices of self-closing tags in XML (#949, reported in #941) 3287ef2
  • Bump domhandler from 4.2.0 to 4.2.2 (#935) 45b2cfe

  v7.1.1...v7.1.2

• 7.1.1 - 2021-08-29
  • Fixed a bug where implied close tags would be misreported (#933) 903fb43
  • Fixed endIndex of text events being off by 1 (#932) 78ef1b7

  v7.1.0...v7.1.1

• 7.1.0 - 2021-08-27

  Features:

  • Added an isImplied flag to the onopentag/onclosetag events (#930) f917004
    • This allows consumers to set start/end indices more correctly. Inspired by posthtml/posthtml-parser#80.
  • It is now possible to get indices for attributes (#929) 28c162b

  Fixes:

  • [email protected] changed how indices were computed. Unfortunately, a lot of edge-cases weren't handled correctly. This version fixes this.
    • refactor: Fix how indices are computed, add attrib indices (#929) 28c162b
    • fix(parser): Fix indices for end, CDATA, add indices to tests (#928) 4e25252
    • fix(parser): Don't override position for implied opening tags (#917) fac221d
    • fix(parser): Index of closing tag was misaligned (#913) 04c411c
  • .pause would lead to data being wrongfully discarded (#927) 78af88d
  • The tokenizer would still emit some data after an error (#923) 08b2040
  • Issue in foreign content: The tag name foreignObject will always be lowercased in HTML e852205

  Refactors:

  • refactor(feeds): Move getFeed to domutils (#931) f10dc03
  • refactor(tokenizer): Use explicit empty buffer if we have reached the end 9c30fe6
  • chore(tests): Add test for error without a listener 0eb0067
  • chore(tests): Use proxies to collect events (#920) a2b0bf3
  • chore(tests): Move stream tests into WritableStream.spec (#916) da67eba
  • refactor(tokenizer): Remove unused branches, improve test coverage (#914) a2eae51
  • docs(readme): Update benchmark results d45fc82

  v7.0.0...v7.1.0

• 7.0.0 - 2021-08-20

  [email protected] changes a lot of internals, resulting in an 20% overall performance improvement in AndreasMadsen's htmlparser-benchmark.

  Breaking changes:

  • Fixed how start & end index positions are calculated (#910) 5ab080e
    • Some indices, especially end indices, will now have changed. Most importantly, end indices will now always be greater or equal than start indices (whoops!).

  Features:

  • Added an isVoidElement method to the parser (#785) 00ce57a

  Refactors:

  • Use a trie to decode HTML & XML entities in the tokenizer (#863) 9a47a55
    • Leads to large speed-ups when dealing with entities.
  • Iterate over char codes in the tokenizer (#894) f5aed75
    • Improved tokenizer performance by ~40%.
  • Use Map for openImpliesClose in the parser (#911) 39a8109
  • Moved logic of FeedHandler to a function (#912) 3a672ff
• 6.1.0 - 2021-04-08 Read more
• 6.0.1 - 2021-03-07
  • Fix parsing special closing tags (#746) 214ab08
    • Thanks to @ BenoitZugmeyer for the report (#745)!

  v6.0.0...v6.0.1

• 6.0.0 - 2020-12-08 Read more
• 5.0.1 - 2020-10-25 Read more
• 5.0.0 - 2020-10-03 Read more
• 4.1.0 - 2020-02-23

from htmlparser2 GitHub release notes

Commit messages

Package name: htmlparser2

• e7cf231 7.2.0
• 7ccc841 fix(tokenizer): Stringify non-string chunks (#1010)
• 0338f5d refactor(tokenizer): Emit text before entities once entity is confirmed (#1009)
• daa0281 fix(tokenizer): Decode entities after < (#1008)
• 6a1b54d refactor(tokenizer): Introduce sequences & fast forwarding (#1007)
• 3adc0e7 refactor(tokenizer): Use `Set`s for larger comparisons
• b172e02 build(deps-dev): Bump @ typescript-eslint/eslint-plugin (#1006)
• 96d227c build(deps-dev): Bump @ typescript-eslint/parser from 5.3.0 to 5.3.1 (#1005)
• 43113a2 build(deps-dev): Bump @ types/node from 16.11.6 to 16.11.7 (#1004)
• eb137c4 build(deps-dev): Bump eslint from 8.1.0 to 8.2.0 (#1003)
• 4a73009 build(deps-dev): Bump @ typescript-eslint/eslint-plugin (#1000)
• 89dcb71 build(deps-dev): Bump @ typescript-eslint/parser from 5.2.0 to 5.3.0 (#999)
• c43ace0 docs(readme): Make `parseDocument()` example clearer (#998)
• 3ad8d12 build(deps-dev): Bump @ typescript-eslint/eslint-plugin (#994)
• 8402924 build(deps-dev): Bump @ typescript-eslint/parser from 5.1.0 to 5.2.0 (#996)
• f251f60 build(deps-dev): Bump @ types/node from 16.11.4 to 16.11.6 (#995)
• 98e9d2f build(deps-dev): Bump eslint from 8.0.1 to 8.1.0 (#993)
• 8ee452c build(deps-dev): Bump @ types/node from 16.11.3 to 16.11.4 (#992)
• 55615f2 build(deps-dev): Bump @ types/node from 16.11.2 to 16.11.3 (#990)
• a72f711 build(deps-dev): Bump @ types/node from 16.11.1 to 16.11.2 (#989)
• 3c4a618 build(deps-dev): Bump @ typescript-eslint/parser from 5.0.0 to 5.1.0 (#987)
• 41eca39 build(deps-dev): Bump jest from 27.3.0 to 27.3.1 (#988)
• 34f3178 build(deps-dev): Bump @ typescript-eslint/eslint-plugin (#986)
• 3fe73ed build(deps-dev): Bump @ types/node from 16.11.0 to 16.11.1 (#985)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs