[Snyk] Upgrade codemirror from 5.49.2 to 5.65.2 #31
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade codemirror from 5.49.2 to 5.65.2.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-CODEMIRROR-1016937
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-CODEMIRROR-569611
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: codemirror
Version 5.65.2
Bug fixes
clike mode: Recognize triple quoted string in Java.
cypher mode: Fix handling of punctuation.
Version 5.65.1
Bug fixes
Fix miscalculation of vertical positions in lines that have both line widgets and replaced newlines.
Version 5.65.0
Bug fixes
brace-folding addon: Fix broken folding on lines with both braces and square brackets.
New features
vim bindings: Support g0, g$, g.
Version 5.64.0
Bug fixes
Fix a crash that occurred in some situations with replacing marks across line breaks.
Make sure native scrollbars reset their position when hidden and re-shown.
New features
vim bindings: Support C-u to delete back a line.
Version 5.63.3
Bug fixes
Re-publish 5.63.2 because npm somehow swallowed that, but won't let me publish it again.-----BEGIN PGP SIGNATURE-----
iQEzBAABCgAdFiEErLY20j+/ljvJRHotcD8b7W0zrh4FAmFlhk0ACgkQcD8b7W0z
rh6lWgf/WRGEk/c0cqPKXuKvFAMK1El2R/IC6lapruHsOYuF4FilKHy0hssu4W+D
Fm15suBTDmxGhlP06dcjbJfmS28qBPVzA061guHg63dzFgbCS10+6pBbiRTMgzsG
rDWAlMawlIfFrW4LIzt7HajaenybGiJKgKezvChTmrhLeLDkvmn442u1PGmuRa5C
ZtAhL0yPYhbpuqK0wQXL3OuGhgQFHwp3xAiuPVLUJZ4VI2T9caNmckic7y5cJ4NT
8WXyDjwWTjboeEyYNyqm88uFqf0B0VO5B/vJnbcgfJbplCcQyn9kQDj1pb2jmuBp
haki+zoTerm6nfBjyBpy6mv68Wcqzw==
=mCdh
-----END PGP SIGNATURE-----
Mark version 5.63.3
Version 5.63.2
Bug fixes
Prevent external styles from giving the hidden textarea a min-height.
Remove a stray autosave file that was part of the previous release.
Version 5.63.1
Bug fixes
Fix an issue with mouse scrolling on Chrome 94 Windows, which made scrolling by wheel move unusably slow.
Version 5.63.0
Bug fixes
Fix scroll position jumping when scrolling a document with very different line heights.
xml mode: Look up HTML element behavior in a case-insensitive way.
New features
vim bindings: Support guu for case-changing.
Version 5.62.3
Bug fixes
Give the editor a
translate=no
attribute to prevent automatic translation from modifying its content.Give vim-style cursors a width that matches the character after them.
merge addon: Make buttons keyboard-accessible.
emacs bindings: Fix by-page scrolling keybindings, which were accidentally inverted.
Commit messages
Package name: codemirror
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs