build(deps): bump svgo by dependabot[bot] · Pull Request #584

build(deps): bump svgo by dependabot[bot] · Pull Request #584 · rtfpessoa/diff2html

Bumps and svgo. These dependencies needed to be updated together.
Updates svgo from 4.0.0 to 4.0.1

Release notes

v4.0.1

What's Changed

Dependencies

Sets minimum version of sax (XML parser) to v1.5.0, which improves built-in guards against entity expansion.

Bug Fixes

removeEmptyContainers, removed leftover <use> elements referencing an empty container that were removed. By @johnkenny54 in svg/svgo#2051

removeUnknownsAndDefaults, don't remove attributes if they're referenced in attribute selectors (CSS). By @SethFalco in svg/svgo#2144

Performance

convertPathData, refactor to reduce redundant equality checks. By @Lorfdail in svg/svgo#1764 and svg/svgo#2135

removeHiddenElems, compute styles lazily. By @Lorfdail in svg/svgo#1764 and svg/svgo#2135

Other Changes

Plugins no longer include if they are enabled or disabled by default, as this was written inconsistently. The --show-plugins argument appends the presets a plugin is in to the end of the line. By @viralcodex in svg/svgo#2174

Plugin/preset types to enforce the name start with preset- if it is a preset (collection of plugins). By @SethFalco in svg/svgo#2178

Metrics

Before and after of the browser bundle of each respective version:

v4.0.0 v4.0.1 Delta

svgo.browser.js 780.2 kB 781.5 kB ⬆️ 1.3 kB

	v4.0.0	v4.0.1	Delta
svgo.browser.js	780.2 kB	781.5 kB	⬆️ 1.3 kB

Commits

e691f5f Merge commit from fork
b1d9f1a chore(deps): bump actions/upload-artifact from 6 to 7 (#2202)
d724af1 chore(deps): bump actions/checkout from 5 to 6 (#2195)
4114b32 chore(deps): bump actions/upload-artifact from 4 to 6 (#2196)
c06d8f6 chore: upgrade js-yaml and glob (#2191)
26e86e5 fix: remove unused <use> elements when deleting empty symbols (#2051)
50c326b perf: optimiztions to reduce regression test runtime (#2135)
1f33cbe ci: separate regression tests and write delta report (#2190)
79a2167 ci: save test reports to artifacts (#2189)
0ae52a0 chore(deps): bump actions/setup-node from 5 to 6 (#2187)
Additional commits viewable in compare view

Updates svgo from 2.8.0 to 2.8.2

Release notes

Sourced from svgo's releases.

v4.0.1

What's Changed

Dependencies

Sets minimum version of sax (XML parser) to v1.5.0, which improves built-in guards against entity expansion.

Bug Fixes

removeEmptyContainers, removed leftover <use> elements referencing an empty container that were removed. By @johnkenny54 in svg/svgo#2051

removeUnknownsAndDefaults, don't remove attributes if they're referenced in attribute selectors (CSS). By @SethFalco in svg/svgo#2144

Performance

convertPathData, refactor to reduce redundant equality checks. By @Lorfdail in svg/svgo#1764 and svg/svgo#2135

removeHiddenElems, compute styles lazily. By @Lorfdail in svg/svgo#1764 and svg/svgo#2135

Other Changes

Plugins no longer include if they are enabled or disabled by default, as this was written inconsistently. The --show-plugins argument appends the presets a plugin is in to the end of the line. By @viralcodex in svg/svgo#2174

Plugin/preset types to enforce the name start with preset- if it is a preset (collection of plugins). By @SethFalco in svg/svgo#2178

Metrics

Before and after of the browser bundle of each respective version:

v4.0.0 v4.0.1 Delta

svgo.browser.js 780.2 kB 781.5 kB ⬆️ 1.3 kB

	v4.0.0	v4.0.1	Delta
svgo.browser.js	780.2 kB	781.5 kB	⬆️ 1.3 kB

Commits

e691f5f Merge commit from fork
b1d9f1a chore(deps): bump actions/upload-artifact from 6 to 7 (#2202)
d724af1 chore(deps): bump actions/checkout from 5 to 6 (#2195)
4114b32 chore(deps): bump actions/upload-artifact from 4 to 6 (#2196)
c06d8f6 chore: upgrade js-yaml and glob (#2191)
26e86e5 fix: remove unused <use> elements when deleting empty symbols (#2051)
50c326b perf: optimiztions to reduce regression test runtime (#2135)
1f33cbe ci: separate regression tests and write delta report (#2190)
79a2167 ci: save test reports to artifacts (#2189)
0ae52a0 chore(deps): bump actions/setup-node from 5 to 6 (#2187)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.