-
Notifications
You must be signed in to change notification settings - Fork 781
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(release): version 4.2.0 #2886
Conversation
chore: merge master into develop
* tests: switch to karma * add ie launcher * increase timeout for ie11 * change basePath for ie11 * reset and use grunt file code * packages * finalize * update package-lock * lint * put husky back * forgot to install * changes
* fix(heading-order): allow partial context to pass * fix for nested headings * fix * fix findindex * ie11 * tests... * validate level
* chore: run prettier * fix test
* chore: move to single eslintrc file * mocha
* fix(aria-required-children): allow group and rowgroup roles * fix
* tests: start server when integration test * fix? * try this * one more time * windows doesnt do start without run command * hurray windows... * one last attempt
* chore: replace phrasing elements in subtree-text * revert playground
* tests: fix? * asdf * works? * nope * headless? * remove options * remove is-ci
* chore: add PR review app yml file * Update PULL_REQUEST_TEMPLATE.md * Apply suggestions from code review Co-authored-by: Steven Lambert <2433219+straker@users.noreply.github.com> Co-authored-by: Steven Lambert <2433219+straker@users.noreply.github.com>
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.7. **This update includes a security fix.** - [Release notes](https://github.com/isaacs/ini/releases) - [Commits](npm/ini@v1.3.5...v1.3.7) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
* feat(lang): Polish translation Polish translation added * feat(lang): Polish translation missing bracket added * feat(lang): Polish translation fix the lang line * feat(locale): Polish translation minor language corrections * feat(locale): Polish translation minor corrections
* chore: split test:unit into different parts * circle
* docs: update contributing guide * fixes
#2691) * feat(nested-interactive): new rule to flag nested interactive elements * Update lib/rules/nested-interactive.json Co-authored-by: Wilco Fiers <WilcoFiers@users.noreply.github.com> * Update lib/rules/nested-interactive.json Co-authored-by: Wilco Fiers <WilcoFiers@users.noreply.github.com> * fixes * remove only * remove log Co-authored-by: Wilco Fiers <WilcoFiers@users.noreply.github.com>
… the parent container (#2682) * fix(color-contrast): account for text client rects that start otuside the parent container * fix? * Update lib/commons/dom/get-text-element-stack.js Co-authored-by: Wilco Fiers <WilcoFiers@users.noreply.github.com> Co-authored-by: Wilco Fiers <WilcoFiers@users.noreply.github.com>
…en (#2703) * fix(aria-required-children): only match for roles that require children * fix * fix tests
* docs: added information on building for locale with npm * Update README.md Co-authored-by: Steven Lambert <2433219+straker@users.noreply.github.com> Co-authored-by: Steven Lambert <2433219+straker@users.noreply.github.com>
…2707) * fix(aria-required-parent): only match for roles that require parents * fix
I'd totally be OK with an action to update the doc for us
chore:update to add product field for easier triage
chore: merge master
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8. **This update includes security fixes.** - [Release notes](https://github.com/isaacs/ini/releases) - [Commits](npm/ini@v1.3.5...v1.3.8) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.3. **This update includes a security fix.** - [Release notes](https://github.com/yargs/y18n/releases) - [Changelog](https://github.com/yargs/y18n/blob/y18n-v4.0.3/CHANGELOG.md) - [Commits](yargs/y18n@v4.0.0...y18n-v4.0.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
* feat(axe.frameMessenger): api to allow custom iframe communication * reset doc * fixes * fix * tests * chore(wip): refactor messageHandler * add allowed origins * rename directory * fix ie11 window.origin * fix build * fix origin * Update test/core/base/audit.js Co-authored-by: Wilco Fiers <WilcoFiers@users.noreply.github.com> * resolve comments * WIP: chanages * chore: fix up couple more minor points * docs(api): add frameMessenger & allowedOrigins * chore(types): add frameMessenger & allowedOrigins * fix(allowedOrigins): consistently use http * chore: resolve comments * docs(API): document use with file:// * chore: minor improvements * docs(API): recommendation not to test on file:// Co-authored-by: Steven Lambert <steven.lambert@deque.com> Co-authored-by: Steven Lambert <2433219+straker@users.noreply.github.com>
CI failure:
Looks like the tests get mad when we bump the version number? 🤔 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Release Audit
- fix(region): allow role=alertdialog as region #2660
- tests: run ChromeHeadless for integration test #2670 Security check was missing
- feat(standards/aria-roles): add presentational children property #2689
- fix(to-grid/get-headers): work with rowspan=0 #2722
- feat(standards): add graphics roles #2761
- feat(frame-focusable-content): new rule to test iframes with tabindex=-1 do not have focusable content #2785
- fix(utils): fix warning thrown by Webpack #2843
- feat: add axe.frameMessenger with configurable allowedOrigins #2880
- chore(deps): [security] bump ini from 1.3.5 to 1.3.8 #2869
#2843 is not reviewed for security @WilcoFiers how did we miss so many security reviews? |
FWIW I believe there's a bug (also a GitHub "feature") in the security review app which prevents it from working unless contributors allow edits from maintainers on their PRs. The app doesn't have write access to commits authored by non-Deque'ers, so it cannot change their statuses. When this happens, it'd be nice if the robot would let us know (by placing a comment on the PR or something) rather than forcing me to dig thru logs 🤷 Unfortunately I doubt I'll have any time to work on this in the near future, so it may be up to @dequelabs/axe-api-team. Adding a |
Can someone take this on? @WilcoFiers we need to make this a priority |
reviewed, status not good as noted above |
Features
Bug Fixes