Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade bootstrap-vue from 2.0.0-rc.11 to 2.23.1 #3

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade bootstrap-vue from 2.0.0-rc.11 to 2.23.1 #3

wants to merge 1 commit into from

Conversation

hpbonfim
Copy link
Owner

snyk-top-banner

Snyk has created this PR to upgrade bootstrap-vue from 2.0.0-rc.11 to 2.23.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 60 versions ahead of your current version.

  • The recommended version was released on 2 years ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Cross-site Scripting (XSS)
SNYK-JS-BOOTSTRAPVUE-73558		 506 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ANSIREGEX-1583908		 506 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ANSIREGEX-1583908		 506 Proof of Concept
medium severity Prototype Pollution
SNYK-JS-MINIMIST-559764		 506 Proof of Concept
medium severity Cross-site Scripting
SNYK-JS-BOOTSTRAP-7444617		 506 Proof of Concept
medium severity Information Exposure
SNYK-JS-NODEFETCH-2342118		 506 No Known Exploit
medium severity Denial of Service
SNYK-JS-NODEFETCH-674311		 506 No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JS-BOOTSTRAP-173700		 506 No Known Exploit
low severity Prototype Pollution
SNYK-JS-MINIMIST-2429795		 506 Proof of Concept
Release notes
Package name: bootstrap-vue
  • 2.23.1 - 2022-10-26

    chore(release): v2.23.1

  • 2.23.0 - 2022-10-25

    chore(release): v2.23.0

  • 2.22.0 - 2022-04-17

    🚀 Features

    • b-link
      • #6811 Support exact-path and exact-path-active-class props for router link
    • b-form-tags
      • #6395 Adds focusin & focusout to wrapper and prevents firing multiple focus/blur events
      • #6347 Add feedback-aria-live prop
    • general
      • #6375 Add headerTag and footerTag props to all componets with header and footer
    • b-dropdown
      • #6339 Add toggle-attrs prop

    🐛 Bug Fixes

    • general
      • #6834 Replace sass division with multiplication
    • b-table
      • #6645 Selected table header text no longer prevents table row selection
      • #6606 Fix range selection of b-table
      • #6603 Set aria-sort when using sortKey and no-local-sorting
      • #6383 Default role to grid when selectable and table otherwise
      • #6382 Prefer user-provided role attribute
      • #6372 Add missing role="grid" when selectable
      • #6371 Header cell overflow for .sr-only sort label
      • #6355 Add missing sortKey field type and correct a typo
    • b-skeleton
      • #6858 Accepts custom attributes
    • nav-item-dropdown
      • 97bb97b Update dropdown to set correct aria-controls
    • b-dropdown
      • #6865 Set correct aria-haspopup attribute for the toggle button
      • #6367 Decrease delay when hiding inside a navbar on no-touch devices
    • utils/dom
    • docs
      • #6545 Use https:// urls in docs
    • b-form-group
      • #6346 Remove role="alert" from valid/invalid feedback
    • b-input-tags
      • #6389 Respect custom $input-color
    • b-link
      • #6374 Remove default values from vue-router pass-down props
    • b-img-lazy
      • #6349 Fix blank placeholder for Firefox
      • #6302 Fix blank-src not working
    • b-form-input/b-form-textarea
      • #6345 Legacy browser support

    🏡 Chore

    • tests
      • 8ce291b Refactor tests not to use $children
      • b16514b Remove useless localVue usage
      • ac8ebfe Replace find with findComponents
      • d113cc7 Remove createContainer helper
    • b-form-tags
      • #6752 Correct typo b-from-tags to b-form-tags
    • icons
      • #6611 Update Bootstrap Icons to v1.5.0
    • docs
      • #6466 Add new "Vuexy - Admin Dashboard" theme
      • #6368 Make sure the clicked anchor target is reflected in URL
    • ci
      • #6592 Update workflows to new Node.js versions
    • refactor
      • #6381 Move away from lifecycle hook listeners
      • #6356 Unify event variable names

    💖 Thanks to

    • Andrei Gheorghiu
    • Connor Forbes
    • Illya Klymov
    • JD
    • James Pickard
    • Jingsong Gao
    • John Franey
    • Jonathan Guberman
    • Joshua Wu
    • Konstantin
    • Lei Wang
    • Olena Horal
    • Pete Hegman
    • Rare Kang
    • Samuel Denis-D'Ortun
    • William
    • William Teixeira
    • magical-l
    • ochowei
    • xenolithviktor
  • 2.21.2 - 2021-01-01

    🐛 Bug Fixes

    • b-dropdown
      • #6274 Only apply heading role to header when not a header tag
    • b-table
      • #6266 Allow responsive and stacked props together
      • #6251 Only set aria-describedby when caption really exists
    • general
      • #6265 Clean up props inheritance
      • #6226 Environment detection based on userAgent
    • b-form-datepicker/b-form-timepicker
    • b-sidebar
      • #6234 Make sure to not exceed 100% in height
    • b-icon
      • #6233 Title render handling

    🏡 Chore

    • docs
      • #6263 Correct typos and improve wording in theming section
      • #6244 Fix typos in <b-form-select> and <b-form-textarea> docs
      • d94edfe Fix typo on "Getting started" page
      • #6232 Remove label-for from <b-form-group>'s with <b-form-file> component
      • #6231 Fix typos in the Dropdown README
      • #6222 Improve Bootstrap/BootstrapVue style import guide in "Getting started" docs
    • icons
      • #6252 Update Bootstrap Icons to v1.2.2
    • general
      • #6227 Add Nuxt.js CodeSanbox CI template

    💖 Thanks to

    • Rich Klein
    • a-kriya
    • cvn
    • darrelfrancis
  • 2.21.1 - 2020-12-16

    🐛 Bug Fixes

    • b-tabs
      • #6208 Restore correct active tab detection logic
    • b-badge
      • #6217 Attribute inheritance
    • b-pagination
      • #6200 Don't set initial page count twice
    • b-dropdown

    🏡 Chore

    • docs
      • #6206 Fix <b-form-timepicker> "Button only mode" example markup
  • 2.21.0 - 2020-12-14

    🚀 Features

    • b-form-group
      • #6178 Add content-cols props and scoped default slot
    • b-sidebar
    • b-form-tags
      • #6163 Add no-tags-remove prop
    • refactor
      • #6141 Code enhancements for easier Vue 3 migration

    🐛 Bug Fixes

    • b-form-datepicker/b-form-timepicker
      • #6186 Label styles when in button-only mode
    • b-tabs
      • #6154 Cleanup rendering logic
    • b-form-datepicker
      • #6159 valueAsDate prop handling
    • table
      • #6153 Default sort compare logic for date strings
      • c375ce9 Use original value for fallback when number parsing fails in defaultSortCompare

    🏡 Chore

    • icons
      • #6194 Update Bootstrap Icons to v1.2.1
      • #6180 Update Bootstrap Icons to v1.2.0
    • refactor
      • b0f5f63 Prefer multiple constants over constants object
    • docs
      • #6148 Update highlight.js to v10

    💖 Thanks to

    • magical-l
  • 2.20.1 - 2020-12-01

    🐛 Bug Fixes

    • general
      • #6113 User supplied prop function detection
    • table
      • c375ce9 Use original value for fallback when number parsing fails in defaultSortCompare
  • 2.20.0 - 2020-11-30

    🚀 Features

    • b-form-tags

    🐛 Bug Fixes

    • b-table
      • #6105 Sort handling for numeric string values
      • #6102 Only set tabindex="0" for sortable TH's
    • b-form-tags
      • #6103 Required handling
    • b-form-spinbutton
    • general
      • #6070 User supplied prop function detection
    • b-form-input
      • #6084 Modified value handling

    🏡 Chore

    • refactor
      • #6100 Improved code sharing between form components
    • docs
      • #6043 Update "Can I use" links
      • #6040 Fix gull & dexam preview image link
      • 25080ca Correct comment to Nuxt.js module icons option

    💖 Thanks to

    • naime-hossain
  • 2.19.0 - 2020-11-08

    🚀 Features

    • config
      • #5981 Improved defaults handling
    • b-media
      • #5965 Improve aside right handling
    • icons
      • #5977 update Bootstrap Icons to v1.1.0

    🐛 Bug Fixes

    • b-dropdown
      • #6009 Click handling on close
    • b-form-group
      • #6006 Accessibility when label-for prop not set
    • b-form-checkbox/b-form-radio
      • #6008 change event timing
    • b-avatar
      • #5975 Badge z-index handling
      • #5963 Prevent avatar from being squished

    🏡 Chore

    • docs
      • #6019 Add another pageOptions setting example
      • #6014 Improve component name formatting
      • #5995 Add gull & dexam themes
    • general
      • #6015 Unify interval/timeout handling
      • #6002 Add SECURITY.md
      • #5990 Migrate from node-sass to sass (Dart Sass)
    • ci
      • #6004 Move to Dependabot for all dependency updates
      • #6003 Add CodeQL action
      • #6001 Update Node.js versions

    💖 Thanks to

    • 82amp
    • JD
    • Joris Lacance
    • Tal Koren
    • naime-hossain
  • 2.18.1 - 2020-10-21

    🐛 Bug Fixes

    • b-icon
      • #5939 Local component lookup
    • b-link
      • #5934 href handling with live router
    • b-form-group
      • #5933 Content element ID handling

    🏡 Chore

    • docs
      • #5935 Add example on how to alias Vue with Vue CLI
  • 2.18.0 - 2020-10-19
  • 2.17.3 - 2020-09-18
  • 2.17.2 - 2020-09-18
  • 2.17.1 - 2020-09-16
  • 2.17.0 - 2020-09-13
  • 2.16.0 - 2020-07-28
  • 2.15.0 - 2020-05-22
  • 2.14.0 - 2020-05-12
  • 2.13.1 - 2020-05-06
  • 2.13.0 - 2020-04-27
  • 2.12.0 - 2020-04-20
  • 2.11.0 - 2020-04-08
  • 2.10.1 - 2020-04-02
  • 2.10.0 - 2020-04-01
  • 2.9.0 - 2020-03-26
  • 2.8.0 - 2020-03-22
  • 2.7.0 - 2020-03-14
  • 2.6.1 - 2020-03-06
  • 2.6.0 - 2020-03-05
  • 2.5.0 - 2020-02-18
  • 2.4.2 - 2020-02-15
  • 2.4.1 - 2020-02-13
  • 2.4.0 - 2020-02-01
  • 2.3.0 - 2020-01-24
  • 2.2.2 - 2020-01-15
  • 2.2.1 - 2020-01-14
  • 2.2.0 - 2020-01-09
  • 2.1.0 - 2019-11-13
  • 2.0.4 - 2019-10-11
  • 2.0.3 - 2019-10-05
  • 2.0.2 - 2019-09-20
  • 2.0.1 - 2019-09-13
  • 2.0.0 - 2019-09-07
  • 2.0.0-rc.28 - 2019-08-12
  • 2.0.0-rc.27 - 2019-07-22
  • 2.0.0-rc.26 - 2019-07-09
  • 2.0.0-rc.25 - 2019-06-30
  • 2.0.0-rc.24 - 2019-06-17
  • 2.0.0-rc.23 - 2019-06-14
  • 2.0.0-rc.22 - 2019-05-31
  • 2.0.0-rc.21 - 2019-05-26
  • 2.0.0-rc.20 - 2019-05-12
  • 2.0.0-rc.19 - 2019-04-21
  • 2.0.0-rc.18 - 2019-04-08
  • 2.0.0-rc.17 - 2019-04-08
  • 2.0.0-rc.16 - 2019-03-28
  • 2.0.0-rc.15 - 2019-03-18
  • 2.0.0-rc.14 - 2019-03-08
  • 2.0.0-rc.13 - 2019-02-19
  • 2.0.0-rc.12 - 2019-02-14
  • 2.0.0-rc.11 - 2018-05-20
from bootstrap-vue GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade bootstrap-vue from 2.0.0-rc.11 to 2.23.1
2039b95 
Snyk has created this PR to upgrade bootstrap-vue from 2.0.0-rc.11 to 2.23.1.

See this package in npm:
bootstrap-vue

See this project in Snyk:
https://app.snyk.io/org/hpbonfim/project/1e15188c-1a06-470f-9427-ac4d5c15fd58?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@hpbonfim @snyk-bot