Skip to content
This repository has been archived by the owner on Oct 20, 2020. It is now read-only.

[Snyk] Upgrade showdown from 1.8.6 to 1.9.1 #6

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

snyk-bot
Copy link
Contributor

@snyk-bot snyk-bot commented Mar 9, 2020

Snyk has created this PR to upgrade showdown from 1.8.6 to 1.9.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
  • The recommended version is 3 versions ahead of your current version.
  • The recommended version was released 4 months ago, on 2019-11-02.

The recommended version fixes:

Severity Issue Exploit Maturity
Denial of Service (DoS)
npm:mem:20180117
No Known Exploit
Reverse Tabnabbing
SNYK-JS-SHOWDOWN-469487
No Known Exploit
Release notes
Package name: showdown
  • 1.9.1 - 2019-11-02

    1.9.1 (2019-11-02)

    Bug Fixes

    • openLinksInNewWindow: add rel="noopener noreferrer" to links (1cd281f), closes #670

    Dependecy update

    • yargs: update yargs to latest version ^14.2 (dae65c6)
  • 1.9.0 - 2018-11-10

    Version 1.9.0 introduces a new feature, the HTML to Markdown converter. This feature is still experimental and is a partial backport of the new Reverse Converter planned for version 2.0.

    Bug Fixes

    • italicsAndBold: fix issue with consecutive spans (#608) (5c0d67e), closes #544
    • underline: fix issue with consecutive spans (81edc70)

    Features

    • converter.makeMarkdown: [EXPERIMENTAL] add an HTML to MD converter (e4b0e69), closes #388 #233
  • 1.8.7 - 2018-10-16

    Bug Fixes

    • emojis: fix emoji excessive size (4aca41c)
    • gfm-codeblocks:
      • add support for spaces before language declaration (24bf7b1), closes #569
      • leading space no longer breaks gfm codeblocks (828c32f), closes #523
    • images: fix js error when using image references (980e702), closes #585
    • literalMidWordAsterisks: now parses single characters enclosed by * correctly (fe70e45), closes #478
    • mentions: allow for usernames with dot, underscore and dash (dfeb1e2), closes #574
    • nbsp: fix replacing of nbsp with regular spaces (8bc1f42)
  • 1.8.6 - 2017-12-22

    Features

    • splitAdjacentBlockquotes: add option to split adjacent blockquote blocks (da328f2), closes #477
from showdown GitHub release notes
Commit messages
Package name: showdown
  • 483e51f release 1.9.1
  • 5cc3fcc update dev dependencies
  • 1cd281f fix(openLinksInNewWindow): add rel="noopener noreferrer" to links
  • 58208e5 update dependencies
  • 8afa1ff release 1.9.0
  • cc1b955 prep release
  • a894a0e docs: add mention to makeMd() to reamde.md
  • e4b0e69 feat(converter.makeMarkdown): add an HTML to MD converter
  • 5c0d67e fix(italicsAndBold): Make italicsAndBold lazy (#608)
  • afbaec9 docs(donations.md): update
  • 0087148 docs(readme.md): update
  • 69b816e docs(completeHTMLDocument): Change completeHTMLDocument comment (#610)
  • a608114 docs(readme.md): update readme.md
  • 9907c95 add md-page to people who use (#604)
  • 3fe5e9a Update DONATIONS.md
  • 012f8d6 Update DONATIONS.md
  • 47428b7 Update README.md
  • c96c3ef Update README.md
  • dc70e68 docs(emoji): Change emoji comment (#611)
  • 0c6f345 fix(italicsAndBold): Make italicsAndBold lazy (#608)
  • e6aeb61 release 1.8.7
  • 828c32f fix(gfm-codeblocks): leading space no longer breaks gfm codeblocks
  • dfeb1e2 fix(mentions): allow for usernames with dot, underscore and dash
  • 79ed024 test: add test for issue 585

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[//]: # (snyk:metadata:{"dependencies":[{"name":"showdown","from":"1.8.6","to":"1.9.1"}],"packageManager":"npm","type":"auto","projectUrl":"https://app.snyk.io/org/coderbyheart/project/0ba2a5d0-dc5d-44ed-99de-264340233dd5?utm_source=github&utm_medium=upgrade-pr","projectPublicId":"0ba2a5d0-dc5d-44ed-99de-264340233dd5","env":"prod","prType":"upgrade","vulns":["npm:mem:20180117","SNYK-JS-SHOWDOWN-469487"],"issuesToFix":[{"issueId":"npm:mem:20180117","severity":"medium","title":"Denial of Service (DoS)","exploitMaturity":"no-known-exploit"},{"issueId":"SNYK-JS-SHOWDOWN-469487","severity":"low","title":"Reverse Tabnabbing","exploitMaturity":"no-known-exploit"}],"upgrade":["npm:mem:20180117","SNYK-JS-SHOWDOWN-469487"],"upgradeInfo":{"versionsDiff":3,"publishedDate":"2019-11-02T23:09:28.799Z"},"templateVariants":[],"hasFixes":true,"isMajorUpgrade":false,"isBreakingChange":false})

# for free to subscribe to this conversation on GitHub. Already have an account? #.