Conversation
Bumps [@remix-run/router](https://github.com/remix-run/react-router/tree/HEAD/packages/router) and [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom). These dependencies needed to be updated together. Updates `@remix-run/router` from 1.23.1 to 1.23.2 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/@remix-run/router@1.23.2/packages/router/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/@remix-run/router@1.23.2/packages/router) Updates `react-router-dom` from 6.30.2 to 6.30.3 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@6.30.3/packages/react-router-dom) --- updated-dependencies: - dependency-name: "@remix-run/router" dependency-version: 1.23.2 dependency-type: indirect - dependency-name: react-router-dom dependency-version: 6.30.3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…f151553 Bump @remix-run/router and react-router-dom
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.21...4.17.23) --- updated-dependencies: - dependency-name: lodash-es dependency-version: 4.17.23 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.21...4.17.23) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.17.23 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…-4.17.23 Bump lodash-es from 4.17.21 to 4.17.23
…17.23 Bump lodash from 4.17.21 to 4.17.23
Bumps [webpack](https://github.com/webpack/webpack) from 5.95.0 to 5.105.0. - [Release notes](https://github.com/webpack/webpack/releases) - [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md) - [Commits](webpack/webpack@v5.95.0...v5.105.0) --- updated-dependencies: - dependency-name: webpack dependency-version: 5.105.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [axios](https://github.com/axios/axios) from 1.12.2 to 1.13.5. - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.12.2...v1.13.5) --- updated-dependencies: - dependency-name: axios dependency-version: 1.13.5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
….105.0 Bump webpack from 5.95.0 to 5.105.0
Bumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) from 4.2.5 to 5.3.6. - [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases) - [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md) - [Commits](NaturalIntelligence/fast-xml-parser@v4.2.5...v5.3.6) --- updated-dependencies: - dependency-name: fast-xml-parser dependency-version: 5.3.6 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
Bump axios from 1.12.2 to 1.13.5
…parser-5.3.6 Bump fast-xml-parser from 4.2.5 to 5.3.6
Bumps [bn.js](https://github.com/indutny/bn.js) from 4.12.0 to 4.12.3. - [Release notes](https://github.com/indutny/bn.js/releases) - [Changelog](https://github.com/indutny/bn.js/blob/master/CHANGELOG.md) - [Commits](indutny/bn.js@v4.12.0...v4.12.3) --- updated-dependencies: - dependency-name: bn.js dependency-version: 4.12.3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [flatted](https://github.com/WebReflection/flatted) from 3.3.1 to 3.4.2. - [Commits](WebReflection/flatted@v3.3.1...v3.4.2) --- updated-dependencies: - dependency-name: flatted dependency-version: 3.4.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…parser-5.5.7 Bump fast-xml-parser from 5.3.6 to 5.5.7
Bumps [lodash-es](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.23...4.18.1) --- updated-dependencies: - dependency-name: lodash-es dependency-version: 4.18.1 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
Removes [@tootallnate/once](https://github.com/TooTallNate/once). It's no longer used after updating ancestor dependency [@wordpress/scripts](https://github.com/WordPress/gutenberg/tree/HEAD/packages/scripts). These dependencies need to be updated together. Removes `@tootallnate/once` Updates `@wordpress/scripts` from 30.4.0 to 31.7.0 - [Release notes](https://github.com/WordPress/gutenberg/releases) - [Changelog](https://github.com/WordPress/gutenberg/blob/trunk/packages/scripts/CHANGELOG.md) - [Commits](https://github.com/WordPress/gutenberg/commits/@wordpress/scripts@31.7.0/packages/scripts) --- updated-dependencies: - dependency-name: "@tootallnate/once" dependency-version: dependency-type: indirect - dependency-name: "@wordpress/scripts" dependency-version: 31.7.0 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
…egexp-0.1.13 Bump path-to-regexp from 0.1.12 to 0.1.13
…ansion-1.1.13 Bump brace-expansion from 1.1.12 to 1.1.13
…7a7038e Bump @tootallnate/once and @wordpress/scripts
…e-1.4.0 Bump node-forge from 1.3.1 to 1.4.0
…-4.18.1 Bump lodash-es from 4.17.23 to 4.18.1
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.23...4.18.1) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.18.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…18.1 Bump lodash from 4.17.23 to 4.18.1
…ug console.log Agent-Logs-Url: https://github.com/ASU-KE/UnityBlocks/sessions/b58f6537-d64a-4839-89cb-4709c51683e8 Co-authored-by: jkcox <8856538+jkcox@users.noreply.github.com>
Ramon wchm api v2
jkcox
added
[Type] a11y
Replace ASU-KE/asu-unity-stack submodule with upstream ASU/asu-unity-stack
jkcox
removed
[Status] Waiting
There was a problem hiding this comment.
Pull request overview
This PR packages the “v4.0 release” set of changes for UnityBlocks, including block markup/runtime updates (notably Anchor Menu + WCHM), dependency/version bumps, and workflow/submodule sync updates.
Changes:
- Update Anchor Menu block to output UDS Bootstrap markup and drop the block’s custom frontend script in favor of the theme-provided view script.
- Update WCHM block to use new v2 API endpoints and expanded contact group rendering.
- Bump versions/deps and adjust tooling (webpack alias + stats, Azure DevOps sync workflow, submodule URL).
Reviewed changes
Copilot reviewed 29 out of 31 changed files in this pull request and generated 6 comments.
Show a summary per file
| File | Description |
|---|---|
| webpack.config.js | Adds a webpack alias for @asu-unity-stack and enables detailed error stats. |
| unityblocks.php | Bumps plugin header version to 4.0.0. |
| src/wchm/save.js | Changes serialized data-baseapipath selection logic (now includes localhost). |
| src/wchm/edit.js | Updates editor-side API base selection (now includes localhost). |
| src/wchm/components/autoComplete.js | Switches WCHM fetching to /v2/* endpoints and adds pre/post/ATF contact sections. |
| src/wchm/block.json | Bumps block apiVersion + block version and updates viewScript handle. |
| src/hero/frontend.js | Switches Hero import to @asu-unity-stack alias path. |
| src/hero/edit.js | Switches Hero import to @asu-unity-stack alias path. |
| src/anchor-menu/save.js | Replaces prior data-driven div with UDS Anchor Menu HTML structure. |
| src/anchor-menu/inspector.js | Adds a “First Element ID” inspector control. |
| src/anchor-menu/frontend.js | Removes the block’s custom frontend behavior script. |
| src/anchor-menu/edit.js | Updates AnchorMenu import to @asu-unity-stack alias path. |
| src/anchor-menu/block.json | Bumps block apiVersion + version; removes file:./frontend.js from viewScript. |
| package.json | Updates package version and bumps tooling/dependencies + React overrides. |
| build/wchm/style-index-rtl.css | Adds generated RTL stylesheet for WCHM. |
| build/wchm/index.js | Updates generated editor bundle for WCHM v2 changes. |
| build/wchm/index.asset.php | Updates generated asset dependencies/version for WCHM editor bundle. |
| build/wchm/frontend.js | Updates generated frontend bundle for WCHM v2 changes. |
| build/wchm/frontend.asset.php | Updates generated asset dependencies/version for WCHM frontend bundle. |
| build/wchm/block.json | Updates generated block.json for WCHM. |
| build/blocks-manifest.php | Updates generated manifest for block versions/scripts + adds news-grid attribute enum. |
| build/anchor-menu/index.asset.php | Updates generated asset metadata for Anchor Menu editor bundle. |
| build/anchor-menu/frontend.js | Removes generated frontend bundle (no longer referenced). |
| build/anchor-menu/frontend.asset.php | Removes generated frontend asset metadata (no longer referenced). |
| build/anchor-menu/block.json | Updates generated block.json for Anchor Menu. |
| README.md | Simplifies ASU News development instructions. |
| .gitmodules | Points resources/asu-unity-stack submodule URL to github.com/ASU/asu-unity-stack. |
| .github/workflows/azure-devops-sync.yml | Adjusts concurrency behavior, ADO project/type/state mapping, and bypass rules. |
Comments suppressed due to low confidence (1)
src/wchm/components/autoComplete.js:23
- The APIM subscription key is hardcoded into the client-side bundle and sent from the browser. This exposes the key publicly and allows anyone to reuse it outside the intended context. Move the call server-side (WP REST proxy) or inject the key from a secured backend mechanism that can be rotated/limited, and avoid committing the key in source control.
method: "GET",
headers: {
"Content-Type": "application/json",
"Ocp-Apim-Subscription-Key": "8dd787c43de54148bf5e10686b6b6e20",
},
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comment on lines
+145
to
+149
| className="anchormenu__first-element-id" | ||
| placeholder="first-container" | ||
| value={props.attributes.firstElementId} | ||
| onChange={handleFirstElementIdChange} | ||
| /> |
There was a problem hiding this comment.
This control updates firstElementId, but the block’s save markup no longer serializes firstElementId (or focusFirstFocusableElement) anywhere. As a result, this setting won’t affect the front-end output/behavior. Either remove these settings/attributes or include them in the saved markup in whatever form the front-end script expects (e.g., data attributes).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.