-
Notifications
You must be signed in to change notification settings - Fork 4
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Release v0.1.23 #383
Merged
Release v0.1.23 #383
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.15...4.17.21) Signed-off-by: dependabot[bot] <support@github.com>
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.21 to 0.7.28. - [Release notes](https://github.com/faisalman/ua-parser-js/releases) - [Commits](faisalman/ua-parser-js@0.7.21...0.7.28) Signed-off-by: dependabot[bot] <support@github.com>
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. - [Release notes](https://github.com/jbgutierrez/path-parse/releases) - [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7) --- updated-dependencies: - dependency-name: path-parse dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…parse-1.0.7 chore(deps): bump path-parse from 1.0.6 to 1.0.7
Bumps [rollup](https://github.com/rollup/rollup) from 2.18.0 to 2.58.0. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](rollup/rollup@v2.18.0...v2.58.0) --- updated-dependencies: - dependency-name: rollup dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [ws](https://github.com/websockets/ws) from 5.2.2 to 5.2.3. - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@5.2.2...5.2.3) --- updated-dependencies: - dependency-name: ws dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…h-4.17.21 chore(deps-dev): bump lodash from 4.17.15 to 4.17.21
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8. - [Release notes](https://github.com/isaacs/ini/releases) - [Commits](npm/ini@v1.3.5...v1.3.8) Signed-off-by: dependabot[bot] <support@github.com>
….3.8 chore(deps): bump ini from 1.3.5 to 1.3.8
trying to resolve some security alerts, most of them because of the deprecated https://www.npmjs.com/package/parcel-bundler
fix(parcel): fix outdated parcel-bundler, might upgrade to v2 later
Bumps [dot-prop](https://github.com/sindresorhus/dot-prop) from 4.2.0 to 4.2.1. - [Release notes](https://github.com/sindresorhus/dot-prop/releases) - [Commits](sindresorhus/dot-prop@v4.2.0...v4.2.1) Signed-off-by: dependabot[bot] <support@github.com>
Bumps [browserslist](https://github.com/browserslist/browserslist) from 4.7.2 to 4.17.3. - [Release notes](https://github.com/browserslist/browserslist/releases) - [Changelog](https://github.com/browserslist/browserslist/blob/main/CHANGELOG.md) - [Commits](browserslist/browserslist@4.7.2...4.17.3) --- updated-dependencies: - dependency-name: browserslist dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [rollup-plugin-postcss](https://github.com/egoist/rollup-plugin-postcss) from 3.1.3 to 3.1.8. - [Release notes](https://github.com/egoist/rollup-plugin-postcss/releases) - [Changelog](https://github.com/egoist/rollup-plugin-postcss/blob/master/CHANGELOG-OLD.md) - [Commits](egoist/rollup-plugin-postcss@v3.1.3...v3.1.8) Signed-off-by: dependabot[bot] <support@github.com>
…rop-4.2.1 chore(deps): bump dot-prop from 4.2.0 to 4.2.1
…rser-js-0.7.28 chore(deps): bump ua-parser-js from 0.7.21 to 0.7.28
Bumps [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) from 14.0.0 to 21.0.0. - [Release notes](https://github.com/rollup/plugins/releases) - [Changelog](https://github.com/rollup/plugins/blob/master/packages/commonjs/CHANGELOG.md) - [Commits](https://github.com/rollup/plugins/commits/commonjs-v21.0.0/packages/commonjs) --- updated-dependencies: - dependency-name: "@rollup/plugin-commonjs" dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
…ntional-changelog better to remove it; and add an upgrade version of it later if need it again https://github.com/thematters/matters-editor/security/dependabot/package-lock.json/merge/open https://github.com/thematters/matters-editor/security/dependabot/package-lock.json/merge/open/update-logs/161989218
dependablebot has a high severity alert for `merge`, used by cz-conve…
… alerts closes #184 should update to eslint later: https://www.npmjs.com/package/tslint > TSLint has been deprecated in favor of ESLint. Please see palantir/tslint#4534 for more information.
Bumps [classnames](https://github.com/JedWatson/classnames) from 2.2.6 to 2.3.1. - [Release notes](https://github.com/JedWatson/classnames/releases) - [Changelog](https://github.com/JedWatson/classnames/blob/master/HISTORY.md) - [Commits](JedWatson/classnames@v2.2.6...v2.3.1) --- updated-dependencies: - dependency-name: classnames dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [rollup-plugin-typescript2](https://github.com/ezolenko/rollup-plugin-typescript2) from 0.27.1 to 0.30.0. - [Release notes](https://github.com/ezolenko/rollup-plugin-typescript2/releases) - [Commits](ezolenko/rollup-plugin-typescript2@0.27.1...0.30.0) Signed-off-by: dependabot[bot] <support@github.com>
https://github.com/thematters/matters-editor/security/dependabot/package-lock.json/kind-of/open > CVE-2019-20149 high severity > Vulnerable versions: >= 6.0.0, < 6.0.3 Patched version: 6.0.3 GHSA-6c8f-qphg-qjgp > Validation Bypass in kind-of > high severity Published on Mar 31, 2020 • Updated on Aug 23 > Vulnerability details Dependabot alerts 1 > Package kind-of (npm) Affected versions >= 6.0.0, < 6.0.3 Patched versions 6.0.3
…names-2.3.1 chore(deps): bump classnames from 2.2.6 to 2.3.1
…erslist-4.17.3 chore(deps): bump browserslist from 4.7.2 to 4.17.3
fix #365 [Editor] - Texts become bold when copy and paste from Google doc References: - facebookarchive/draft-js#393 (comment) - [Superdesk CMS is using DraftJS](https://github.com/superdesk/superdesk-client-core/blob/develop/scripts/core/editor3/html/from-html/index.ts#L60) and internally calling docsSoap to resolve this - slab/quill#2462 has some dirty fix with side effects - ProseMirror/prosemirror#459 (comment) this fix mentioned ProseMirror/prosemirror-schema-basic@cbbdc1a691 in ProseMirror looks much cleaner
fix/clipboard: use docsSoap to prepare html from google doc
…p/plugin-commonjs-21.0.0 chore(deps-dev): bump @rollup/plugin-commonjs from 14.0.0 to 21.0.0
Bumps [@types/quill](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/quill) from 2.0.3 to 2.0.9. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/quill) --- updated-dependencies: - dependency-name: "@types/quill" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
…/quill-2.0.9 chore(deps-dev): bump @types/quill from 2.0.3 to 2.0.9
should be the ultimate fix #374 Code block eats up lines if it's added in the beginning of article content 5 pt bug have tried many ways to remove this empty line after end of initialization, but does not work or have other complications would be better to leave it, user can always delete this empty line before publishing current sympton of #374 is losing all rich text formatting, all paragraphs (except the last one) are losing format; bottom line is not to lose all rich text formatting
robertu7
approved these changes
Oct 13, 2021
@@ -21,12 +21,11 @@ | |||
"build": "rimraf dist/**/* && rollup -c rollup.config.js", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
please also update the version
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Major fixes:
should be the ultimate fix [Editor] - Code block eats up lines if it's added in the beginning of article content #374