@gitlab/ui 43.9.0 → 43.9.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +21 -0
- package/README.md +1 -1
- package/dist/directives/safe_html/safe_html.js +4 -1
- package/dist/index.css +1 -1
- package/dist/index.css.map +1 -1
- package/dist/utility_classes.css +1 -1
- package/dist/utility_classes.css.map +1 -1
- package/package.json +8 -8
- package/src/components/base/alert/alert.scss +0 -19
- package/src/components/regions/empty_state/empty_state.stories.js +4 -2
- package/src/directives/safe_html/safe_html.js +3 -1
- package/src/directives/safe_html/safe_html.stories.js +3 -1
- package/src/scss/utilities.scss +14 -14
- package/src/scss/utility-mixins/flex.scss +4 -4
package/CHANGELOG.md
CHANGED
|
@@ -1,3 +1,24 @@
|
|
|
1
|
+
## [43.9.3](https://gitlab.com/gitlab-org/gitlab-ui/compare/v43.9.2...v43.9.3) (2022-08-30)
|
|
2
|
+
|
|
3
|
+
|
|
4
|
+
### Bug Fixes
|
|
5
|
+
|
|
6
|
+
* **deps:** update dependency dompurify to ^2.4.0 ([aefdefa](https://gitlab.com/gitlab-org/gitlab-ui/commit/aefdefac3632f383aa6f62f868097a27bfe90e89))
|
|
7
|
+
|
|
8
|
+
## [43.9.2](https://gitlab.com/gitlab-org/gitlab-ui/compare/v43.9.1...v43.9.2) (2022-08-30)
|
|
9
|
+
|
|
10
|
+
|
|
11
|
+
### Bug Fixes
|
|
12
|
+
|
|
13
|
+
* use default DOMpurify export ([da7473f](https://gitlab.com/gitlab-org/gitlab-ui/commit/da7473f9a93c62f165da9ec4fc62bee80570e29d))
|
|
14
|
+
|
|
15
|
+
## [43.9.1](https://gitlab.com/gitlab-org/gitlab-ui/compare/v43.9.0...v43.9.1) (2022-08-25)
|
|
16
|
+
|
|
17
|
+
|
|
18
|
+
### Bug Fixes
|
|
19
|
+
|
|
20
|
+
* **css:** ensure we correctly generate gl-flex-direction-column utils ([68c8ef3](https://gitlab.com/gitlab-org/gitlab-ui/commit/68c8ef36f9e7bc07d8f61f4953bec52f1a7d10f1))
|
|
21
|
+
|
|
1
22
|
# [43.9.0](https://gitlab.com/gitlab-org/gitlab-ui/compare/v43.8.1...v43.9.0) (2022-08-24)
|
|
2
23
|
|
|
3
24
|
|
package/README.md
CHANGED
|
@@ -142,7 +142,7 @@ Under the hood, those variables are passed to
|
|
|
142
142
|
|
|
143
143
|
### End to end tests
|
|
144
144
|
|
|
145
|
-
Components’ end to end tests live in the `cypress/
|
|
145
|
+
Components’ end to end tests live in the `cypress/e2e` folder. See our
|
|
146
146
|
[end to end testing documentation](doc/contributing/end_to_end_test.md) for more details.
|
|
147
147
|
|
|
148
148
|
`yarn run cypress open` runs Cypress locally to run end to end tests.
|
|
@@ -1,6 +1,9 @@
|
|
|
1
|
-
import
|
|
1
|
+
import DOMPurify from 'dompurify';
|
|
2
2
|
import { forbiddenDataAttrs } from './constants';
|
|
3
3
|
|
|
4
|
+
const {
|
|
5
|
+
sanitize
|
|
6
|
+
} = DOMPurify; // Mitigate against future dompurify mXSS bypasses by
|
|
4
7
|
// avoiding additional serialize/parse round trip.
|
|
5
8
|
// See https://gitlab.com/gitlab-org/gitlab-ui/-/merge_requests/1782
|
|
6
9
|
// and https://gitlab.com/gitlab-org/gitlab-ui/-/merge_requests/2127
|