Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Release v0.1.23 #383

Merged
merged 33 commits into from
Oct 13, 2021
Merged

Release v0.1.23 #383

merged 33 commits into from
Oct 13, 2021

Conversation

tx0c
Copy link
Contributor

@tx0c tx0c commented Oct 13, 2021

Major fixes:

  1. fix [Editor] - Embedded youtube video in article always plays from 00:00 even with start time parameter. #203 youtube video embed link with start parameters c863021
  2. fix [Editor] - Texts become bold when copy and paste from Google doc #365 clipboard: use docsSoap to prepare html from google doc 95f009f
  3. insert empty line at beginning if startsWith pre code-block 36b36ee
    should be the ultimate fix [Editor] - Code block eats up lines if it's added in the beginning of article content #374

dependabot bot and others added 30 commits February 22, 2021 05:14
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.15...4.17.21)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.21 to 0.7.28.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Commits](faisalman/ua-parser-js@0.7.21...0.7.28)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7.
- [Release notes](https://github.com/jbgutierrez/path-parse/releases)
- [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7)

---
updated-dependencies:
- dependency-name: path-parse
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
…parse-1.0.7

chore(deps): bump path-parse from 1.0.6 to 1.0.7
Bumps [rollup](https://github.com/rollup/rollup) from 2.18.0 to 2.58.0.
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](rollup/rollup@v2.18.0...v2.58.0)

---
updated-dependencies:
- dependency-name: rollup
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [ws](https://github.com/websockets/ws) from 5.2.2 to 5.2.3.
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@5.2.2...5.2.3)

---
updated-dependencies:
- dependency-name: ws
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
…h-4.17.21

chore(deps-dev): bump lodash from 4.17.15 to 4.17.21
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.8.
- [Release notes](https://github.com/isaacs/ini/releases)
- [Commits](npm/ini@v1.3.5...v1.3.8)

Signed-off-by: dependabot[bot] <support@github.com>
….3.8

chore(deps): bump ini from 1.3.5 to 1.3.8
trying to resolve some security alerts, most of them because of the deprecated
https://www.npmjs.com/package/parcel-bundler
fix(parcel): fix outdated parcel-bundler, might upgrade to v2 later
Bumps [dot-prop](https://github.com/sindresorhus/dot-prop) from 4.2.0 to 4.2.1.
- [Release notes](https://github.com/sindresorhus/dot-prop/releases)
- [Commits](sindresorhus/dot-prop@v4.2.0...v4.2.1)

Signed-off-by: dependabot[bot] <support@github.com>
Bumps [browserslist](https://github.com/browserslist/browserslist) from 4.7.2 to 4.17.3.
- [Release notes](https://github.com/browserslist/browserslist/releases)
- [Changelog](https://github.com/browserslist/browserslist/blob/main/CHANGELOG.md)
- [Commits](browserslist/browserslist@4.7.2...4.17.3)

---
updated-dependencies:
- dependency-name: browserslist
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
…rop-4.2.1

chore(deps): bump dot-prop from 4.2.0 to 4.2.1
…rser-js-0.7.28

chore(deps): bump ua-parser-js from 0.7.21 to 0.7.28
Bumps [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs) from 14.0.0 to 21.0.0.
- [Release notes](https://github.com/rollup/plugins/releases)
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/commonjs/CHANGELOG.md)
- [Commits](https://github.com/rollup/plugins/commits/commonjs-v21.0.0/packages/commonjs)

---
updated-dependencies:
- dependency-name: "@rollup/plugin-commonjs"
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
dependablebot has a high severity alert for `merge`, used by cz-conve…
… alerts

closes #184

should update to eslint later: https://www.npmjs.com/package/tslint
> TSLint has been deprecated in favor of ESLint. Please see palantir/tslint#4534 for more information.
Bumps [classnames](https://github.com/JedWatson/classnames) from 2.2.6 to 2.3.1.
- [Release notes](https://github.com/JedWatson/classnames/releases)
- [Changelog](https://github.com/JedWatson/classnames/blob/master/HISTORY.md)
- [Commits](JedWatson/classnames@v2.2.6...v2.3.1)

---
updated-dependencies:
- dependency-name: classnames
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
https://github.com/thematters/matters-editor/security/dependabot/package-lock.json/kind-of/open
> CVE-2019-20149 high severity
> Vulnerable versions: >= 6.0.0, < 6.0.3 Patched version: 6.0.3

GHSA-6c8f-qphg-qjgp
> Validation Bypass in kind-of
> high severity Published on Mar 31, 2020 • Updated on Aug 23
> Vulnerability details Dependabot alerts 1
> Package kind-of (npm) Affected versions >= 6.0.0, < 6.0.3 Patched versions 6.0.3
…names-2.3.1

chore(deps): bump classnames from 2.2.6 to 2.3.1
…erslist-4.17.3

chore(deps): bump browserslist from 4.7.2 to 4.17.3
fix #365 [Editor] - Texts become bold when copy and paste from Google doc

References:
- facebookarchive/draft-js#393 (comment)
- [Superdesk CMS is using DraftJS](https://github.com/superdesk/superdesk-client-core/blob/develop/scripts/core/editor3/html/from-html/index.ts#L60) and internally calling docsSoap to resolve this
- slab/quill#2462 has some dirty fix with side effects
- ProseMirror/prosemirror#459 (comment) this fix mentioned ProseMirror/prosemirror-schema-basic@cbbdc1a691 in ProseMirror looks much cleaner
fix/clipboard: use docsSoap to prepare html from google doc
…p/plugin-commonjs-21.0.0

chore(deps-dev): bump @rollup/plugin-commonjs from 14.0.0 to 21.0.0
Bumps [@types/quill](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/quill) from 2.0.3 to 2.0.9.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/quill)

---
updated-dependencies:
- dependency-name: "@types/quill"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
tx0c added 2 commits October 12, 2021 15:13
…/quill-2.0.9

chore(deps-dev): bump @types/quill from 2.0.3 to 2.0.9
should be the ultimate fix #374 Code block eats up lines if it's added in the beginning of article content 5 pt bug

have tried many ways to remove this empty line after end of initialization, but does not work or have other complications
would be better to leave it, user can always delete this empty line before publishing

current sympton of #374 is losing all rich text formatting, all paragraphs (except the last one) are losing format;

bottom line is not to lose all rich text formatting
@tx0c tx0c self-assigned this Oct 13, 2021
@tx0c tx0c requested a review from a team as a code owner October 13, 2021 03:32
@@ -21,12 +21,11 @@
"build": "rimraf dist/**/* && rollup -c rollup.config.js",
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please also update the version

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants