Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump phoenix_html from 2.13.3 to 3.3.1 #211

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 6, 2023

Bumps phoenix_html from 2.13.3 to 3.3.1.

Changelog

Sourced from phoenix_html's changelog.

v3.3.1 (2023-02-27)

  • Bug fix
    • Set display to none on generated forms
    • Warn for maps with atom keys

v3.3.0 (2023-02-10)

  • Enhancements

    • Support deeply nested class lists
    • Implement Phoenix.HTML.Safe for URI
    • Implement Phoenix.HTML.FormData for Map
  • Bug fix

    • Generate unique IDs for checkboxes based on the value
    • Use artificial button click instead of form.submit in JavaScript to trigger all relevant events
    • Fix a bug where nil/false/true attributes in aria/data/phx would emit empty or literal values, such as "true" and "false". This release aligns them with all other attributes so both nil and false emit nothing. true emits the attribute with no value.
  • Deprecations

    • Phoenix.HTML.Tag.attributes_escape/1 is deprecated in favor of Phoenix.HTML.attributes_escape/1

v3.2.0 (2021-12-18)

  • Enhancements
    • Raise if the id attribute is set to a number. This is actually an invalid value according to the HTML spec and it can lead to problematic client behaviour, especially in LiveView and other client frameworks.
    • Allow phx attributes to be nested, similar to aria and data attributes
    • Allow hidden fields in forms to be a list of values

v3.1.0 (2021-10-23)

  • Bug fix
    • Do not submit data-method links if default has been prevented
  • Deprecations
    • Deprecate ~E and Phoenix.HTML.Tag.attributes_escape/1
    • Remove deprecated Phoenix.HTML.Link.link/1

v3.0.4 (2021-09-23)

  • Bug fix
    • Ensure class={@class} in HEEx templates and :class attribute in content_tag are properly escaped against XSS

v3.0.3 (2021-09-04)

  • Bug fix
    • Fix sorting of attributes in tag/content_tag

v3.0.2 (2021-08-19)

  • Enhancements
    • Support maps on Phoenix.HTML.Tag.attributes_escape/1

... (truncated)

Commits
  • 77db8d5 Release v3.3.1
  • ed68c5c Set display to none instead of hidden
  • 0e0ab0f Move form_for to its own section
  • 2d2e2e9 Warn for maps with atom keys
  • 61e5ea7 Update error message for supported string keys for fields (#410)
  • 3b6e160 Implement and document string field lookup
  • 6ca7dfa Fix function name
  • b495acc fix markdown titles in changelog so they appear in the TOC of docs (#407)
  • 12d1cc0 Update CHANGELOG, closes #405
  • 6c3a8ee Release v3.3.0
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [phoenix_html](https://github.com/phoenixframework/phoenix_html) from 2.13.3 to 3.3.1.
- [Release notes](https://github.com/phoenixframework/phoenix_html/releases)
- [Changelog](https://github.com/phoenixframework/phoenix_html/blob/main/CHANGELOG.md)
- [Commits](phoenixframework/phoenix_html@v2.13.3...v3.3.1)

---
updated-dependencies:
- dependency-name: phoenix_html
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 6, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants