[Snyk] Security upgrade docsify from 4.11.2 to 4.11.4 by snyk-bot · Pull Request #1250 · docsifyjs/docsify
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- packages/docsify-server-renderer/package.json
- packages/docsify-server-renderer/package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|
 |
Cross-site Scripting (XSS) SNYK-JS-DOCSIFY-567099 |
No | Proof of Concept |
Commit messages
Package name: docsify
The new version differs by 98 commits.- 13f91a4 chore: add changelog 4.11.4
- 3f4c035 [build] 4.11.4
- 714ef29 feat: added html sanitizer for remote rendering (update: added html sanitizer for remote rendering #1128)
- 0bf03f5 fix: cover overlapping sidebar by removing z-index
- da9af18 Merge pull request Allow configs to be functions #1189 from docsifyjs/allow-config-function
- 146e4c4 Update build/css.js
- 8f3f263 Merge branch 'develop' into allow-config-function
- a1ddb3c Merge pull request chore: remove redundant instruction from lint-staged config #1108 from jamesgeorge007/update-config
- d9d3251 Merge branch 'develop' into update-config
- abaf6f3 Merge branch 'develop' into allow-config-function
- fa47c6f Merge branch 'master' into develop
- 64a231d use a port for the tests that doesn't collide with common local server ports
- 7f835b1 Merge branch 'develop' into update-config
- 0438dd6 Merge branch 'develop' into allow-config-function
- 26cb940 Revert "Updated docs site dark and light mode with switch and redesigned search bar using docsify-darklight-theme" (Revert "Updated docs site dark and light mode with switch and redesigned search bar using docsify-darklight-theme" #1207)
- 72ec71f Merge branch 'develop' into allow-config-function
- 817c079 ci: added codesandbox build preview for PR reviews (ci: added codesandbox build preview for PR reviews #1193)
- 809fda9 Merge branch 'develop' into allow-config-function
- 7853026 style: Get emoji from github api (style: Get emoji from github api #1188)
- 63f1b88 Revert "ensure that the test script runs a prod build"
- 31f1a64 update outdated comment
- 41dc2c7 ensure that the test script runs a prod build
- dca22f3 simplify import
- 79fe3d5 remove some unused code and accept eslint changes
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report