Skip to content

Vaadin Flow 9.0.19

Choose a tag to compare

View all tags
@vaadin-bot vaadin-bot released this 05 Sep 12:24
· 77 commits to 9.0 since this release
9.0.19
de7c13d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

Changes since 9.0.18

All changes

Security Fixes

  • Security upgrade org.jsoup:jsoup to 1.15.3
    Commit · Pull request

    The following vulnerability are fixed with the upgrade: https://snyk.io/vuln/SNYK-JAVA-ORGJSOUP-2989728

    • Important Note: Upgrading jsoup from 1.14.3 to 1.15.3 includes an API breaking change and it might prevents the compilation of your code (only if you had a any direct usage of the removed deprecated class org.jsoup.safety.Whitelist). This was necessary to fix the potential security vulnerability listed above, and it is recommended to upgrade to this version. If you happened to have a compile error in your application, simply replace any possible occurrences of org.jsoup.safety.Whitelist with org.jsoup.safety.Safelist and there should not be any other hassles.

Fixes

  • Never cache the "waiting for frontend build" page (#14436)
    Commit · Pull request · Issue

  • Not modify browser history if location has no hash (#14397)
    Commit · Pull request · Issue

    if no segment with hash is present in the location, while navigating between Flow and legacy views/components, the update of the browser history is not needed.

Assets 2
Loading