tangram-play
tangram-play copied to clipboard
tangrams
Text editor web app for Tangram scenes
Bumps [postcss](https://github.com/postcss/postcss) from 6.0.2 to 7.0.36. Release notes Sourced from postcss's releases. 7.0.36 Backport ReDoS vulnerabilities from PostCSS 8. 7.0.35 Add migration guide link to PostCSS 8 error text. 7.0.34...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [color-string](https://github.com/Qix-/color-string) from 1.5.2 to 1.9.1. Release notes Sourced from color-string's releases. 1.9.0 Minor Release 1.9.0 Add parsing of exponential alpha values for HWB and HSL (#66) Thanks to @babycannotsay...
Bumps [jszip](https://github.com/Stuk/jszip) from 3.1.3 to 3.7.0. Changelog Sourced from jszip's changelog. v3.7.0 2021-07-23 Fix: Use a null prototype object for this.files (see #766) This change might break existing code if...
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.4 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...
Bumps [three](https://github.com/mrdoob/three.js) from 0.86.0 to 0.137.0. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [cached-path-relative](https://github.com/ashaffer/cached-path-relative) from 1.0.1 to 1.1.0. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.5 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [codemirror](https://github.com/codemirror/CodeMirror) from 5.26.0 to 5.58.2. Release notes Sourced from codemirror's releases. 5.58.2 No release notes provided. 5.58.1 Version 5.58.1 Bug fixes placeholder addon: Remove arrow function that ended up...
Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.4.2 to 2.8.9. Changelog Sourced from hosted-git-info's changelog. 2.8.9 (2021-04-07) Bug Fixes backport regex fix from #76 (29adfe5), closes #84 2.8.8 (2020-02-29) Bug Fixes #61 & #65...
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.4 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...