Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade @astrojs/starlight from 0.7.3 to 0.9.0 #179

Merged
merged 1 commit into from
Sep 23, 2023
Merged

[Snyk] Upgrade @astrojs/starlight from 0.7.3 to 0.9.0 #179

merged 1 commit into from
Sep 23, 2023

Conversation

KeisukeYamashita
Copy link
Owner

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @astrojs/starlight from 0.7.3 to 0.9.0.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

✨ Snyk has automatically assigned this pull request, set who gets assigned.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 3 versions ahead of your current version.
  • The recommended version was released 21 days ago, on 2023-09-01.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: @astrojs/starlight
  • 0.9.0 - 2023-09-01

    Minor Changes

    • #626 5dd22b8 Thanks @ delucis! - Throw an error for duplicate MDX or sitemap integrations

    • #615 7b75b3e Thanks @ delucis! - Bump minimum required Astro version to 3.0

      ⚠️ BREAKING CHANGE Astro v2 is no longer supported. Make sure you update Astro and any other integrations at the same time as updating Starlight.

  • 0.8.1 - 2023-09-01

    Patch Changes

  • 0.8.0 - 2023-08-29

    Minor Changes

    • #529 c2d0e7f Thanks @ delucis! - For improved compatibility with Tailwind, some Starlight built-in class names are now prefixed with "sl-".

      While not likely, if you were relying on one of these internal class names in your own components or custom CSS, you will need to update to use the prefixed version.

      • Before: flex, md:flex, lg:flex, block, md:block, lg:block, hidden, md:hidden, lg:hidden.
      • After: sl-flex, md:sl-flex, lg:sl-flex, sl-block, md:sl-block, lg:sl-block, sl-hidden, md:sl-hidden, lg:sl-hidden.

    • #593 5b8af95 Thanks @ delucis! - Add announcement banner feature

    • #516 70a32a1 Thanks @ kevinzunigacuellar! - Support adding badges to sidebar links from config file and frontmatter

    Patch Changes

  • 0.7.3 - 2023-08-21

    Patch Changes

from @astrojs/starlight GitHub release notes

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

👩‍💻 Set who automatically gets assigned

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@KeisukeYamashita KeisukeYamashita self-assigned this Sep 23, 2023
@KeisukeYamashita KeisukeYamashita merged commit 33ae55a into main Sep 23, 2023
10 of 11 checks passed
@KeisukeYamashita KeisukeYamashita deleted the snyk-upgrade-494ccb7f6bae94291fd4a0e18b880bae branch September 23, 2023 07:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@KeisukeYamashita KeisukeYamashita

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@KeisukeYamashita @snyk-bot