Skip to content

Bump vditor from 3.8.5 to 3.8.11 in /src/Vditors#36

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/src/Vditors/vditor-3.8.11
Closed

Bump vditor from 3.8.5 to 3.8.11 in /src/Vditors#36
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/src/Vditors/vditor-3.8.11

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jan 24, 2022

Copy link
Copy Markdown

Bumps vditor from 3.8.5 to 3.8.11.

Release notes

Sourced from vditor's releases.

细节改进

  • 1129 WYSIWYG 下,点击语言后光标切换到代码输入框中 改进功能
  • 1122 预览中退出全屏后,工具栏布局错误 修复缺陷
  • 1123 预览模式下,工具栏不自动隐藏 改进功能
  • 1124 在焦点更改后,代码选择列表不自动隐藏 改进功能
  • 1121 WYSIWYG 下,Enter 也可以切换到代码输入框中 改进功能
  • 1103 支持多语言切换 改进功能
  • 1105 兼容 Firefox 中的代码语言选择 修复缺陷
  • 1098 兼容 Firefox 中的文件拖拽 修复缺陷
  • 1097 options.hint.extend[].hint 支持异步 改进功能
  • 1101 支持 options.upload.handler 异步 改进功能
  • 1089 解决内存泄漏问题 开发重构
  • 158 Table 紧跟的上一行不是空行时,SpinVditorSVDOM 会将整个表格过滤掉 修复缺陷

XSS 修复

  • 1049 #后面没有空格也会渲染为标题 修复缺陷
  • 1085 XSS 漏洞修复 修复缺陷
  • 1074 升级 webpack-dev-server & node-sass 开发重构
  • 1063 所见即所得模式链接引用语法中链接文本包含行级嵌套的问题 修复缺陷
  • 1047 列表换行问题 修复缺陷
Changelog

Sourced from vditor's changelog.

v3.8.11 / 2022-01-22

  • 1156 所见即所得行级 HTML 解析错误 修复缺陷
  • 1133 SVG 事件导致的 XSS 漏洞 修复缺陷
  • 1158 Add mhchem support to KaTex 引入特性
  • 1153 vditor 的生产代码未经 minify 改进功能
  • 1004 options.input无法监听点击toolbar link的输入内容 改进功能

v3.8.10 / 2021-12-21

  • 1134 渲染时代码块复制图标报错 修复缺陷
  • 1129 WYSIWYG 下,点击语言后光标切换到代码输入框中 改进功能
  • 1122 预览中退出全屏后,工具栏布局错误 修复缺陷
  • 1123 预览模式下,工具栏不自动隐藏 改进功能
  • 1124 在焦点更改后,代码选择列表不自动隐藏 改进功能
  • 1121 WYSIWYG 下,Enter 也可以切换到代码输入框中 改进功能
  • 1103 支持多语言切换 改进功能
  • 1105 兼容 Firefox 中的代码语言选择 修复缺陷
  • 1098 兼容 Firefox 中的文件拖拽 修复缺陷
  • 1097 options.hint.extend[].hint 支持异步 改进功能
  • 1101 支持 options.upload.handler 异步 改进功能
  • 1089 解决内存泄漏问题 开发重构
  • 158 Table 紧跟的上一行不是空行时,SpinVditorSVDOM 会将整个表格过滤掉 修复缺陷

v3.8.7 / 2021-09-21

  • 1049 #后面没有空格也会渲染为标题 修复缺陷
  • 1085 XSS 漏洞修复 修复缺陷
  • 1074 升级 webpack-dev-server & node-sass 开发重构
  • 1063 所见即所得模式链接引用语法中链接文本包含行级嵌套的问题 修复缺陷
  • 1047 列表换行问题 修复缺陷
  • 974 所见即所得模式下行级元素间的空格会被删除 修复缺陷
  • 1029 公式内小于号大于号等没有转义 修复缺陷
  • 1036 标题设置没有配置多语言 改进功能
  • 957 支持表格横向滚动 引入特性
  • 1038 图片使用 pointer 样式 改进功能
  • 1034 Support Vue and Angular 改进功能
  • 1016 Support Svelte 文档相关
  • 1009 对于 markdown 目录下的渲染方法新增 适配模块 引入特性
  • 1011 支持导出 JSON 引入特性
  • 1010 多语言分离 改进功能
  • 1008 自定义多语言 引入特性
  • 1000 升级 hljs 并添加更多的语言支持 改进功能
  • 993 加入繁體中文 引入特性
  • 980 流程图不应渲染代码高亮 修复缺陷
  • 987 完善 upload 必填项说明 文档相关
  • 970 added ru_RU lang 引入特性
  • 955 为 hint 内容添加是否进行 md 转换的设置 改进功能
  • 956 改进 plantuml 解析问题 修复缺陷
  • 953 标题删除需保留空行 改进功能

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [vditor](https://github.com/Vanessa219/vditor) from 3.8.5 to 3.8.11.
- [Release notes](https://github.com/Vanessa219/vditor/releases)
- [Changelog](https://github.com/Vanessa219/vditor/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Vanessa219/vditor/commits)

---
updated-dependencies:
- dependency-name: vditor
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jan 24, 2022
@dependabot @github

dependabot Bot commented on behalf of github Mar 4, 2022

Copy link
Copy Markdown
Author

Superseded by #42.

@dependabot dependabot Bot closed this Mar 4, 2022
@dependabot
dependabot Bot deleted the dependabot/npm_and_yarn/src/Vditors/vditor-3.8.11 branch March 4, 2022 01:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants