Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade typedoc from 0.22.18 to 0.26.2 #53

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

snyk-io[bot]
Copy link

@snyk-io snyk-io bot commented Jul 18, 2024

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade typedoc from 0.22.18 to 0.26.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 77 versions ahead of your current version.

  • The recommended version was released on 24 days ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Improper Handling of Exceptional Conditions
SNYK-JS-OCTOKITWEBHOOKS-6129527
145 No Known Exploit
high severity Uncaught Exception
SNYK-JS-SOCKETIO-7278048
145 No Known Exploit
high severity Improper Input Validation
SNYK-JS-FOLLOWREDIRECTS-6141137
145 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ES5EXT-6095076
145 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795
145 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795
145 Proof of Concept
medium severity Information Exposure
SNYK-JS-FOLLOWREDIRECTS-6444610
145 Proof of Concept
critical severity Incomplete List of Disallowed Inputs
SNYK-JS-BABELTRAVERSE-5962462
145 Proof of Concept
high severity Improper Control of Generation of Code ('Code Injection')
SNYK-JS-PUGCODEGEN-7086056
145 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795
145 Proof of Concept
medium severity Improper Control of Dynamically-Managed Code Resources
SNYK-JS-EJS-6689533
145 No Known Exploit
low severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-WORDWRAP-3149973
145 Proof of Concept
Release notes
Package name: typedoc
  • 0.26.2 - 2024-06-24

    Features

    • Added a --suppressCommentWarningsInDeclarationFiles option to disable warnings from
      parsing comments in declaration files, #2611.
    • Improved comment discovery to more closely match TypeScript's discovery when getting comments
      for members of interfaces/classes, #2084, #2545.

    Bug Fixes

    • The text non-highlighted language no longer causes warnings when rendering, #2610.
    • If a comment on a method is inherited from a parent class, and the child class does not
      use an @ param tag from the parent, TypeDoc will no longer warn about the @ param tag.
  • 0.26.1 - 2024-06-22

    Features

    • Improved Korean translation coverage, #2602.

    Bug Fixes

    • Added @ author to the default list of recognized tags, #2603.
    • Anchor links are no longer incorrectly checked for relative paths, #2604.
    • Fixed an issue where line numbers reported in error messages could be incorrect, #2605.
    • Fixed relative link detection for markdown links containing code in their label, #2606.
    • Fixed an issue with packages mode where TypeDoc would use (much) more memory than required, #2607.
    • TypeDoc will no longer crash when asked to render highlighted code for an unsupported language, #2609.
    • Fixed an issue where relatively-linked files would not be copied to the output directory in packages mode.
    • Fixed an issue where modifier tags were not applied to top level modules in packages mode.
    • Fixed an issue where excluded tags were not removed from top level modules in packages mode.
    • .jsonc configuration files are now properly read as JSONC, rather than being passed to require.

    Thanks!

  • 0.26.0 - 2024-06-22

    Breaking Changes

    • Drop support for Node 16.
    • Moved from marked to markdown-it for parsing as marked has moved to an async model which supporting would significantly complicate TypeDoc's rendering code.
      This means that any projects setting markedOptions needs to be updated to use markdownItOptions.
      Unlike marked@4, markdown-it pushes lots of functionality to plugins. To use plugins, a JavaScript config file must be used with the markdownItLoader option.
    • Updated Shiki from 0.14 to 1.x. This should mostly be a transparent update which adds another 23 supported languages and 13 supported themes.
      As Shiki adds additional languages, the time it takes to load the highlighter increases linearly. To avoid rendering taking longer than necessary,
      TypeDoc now only loads a few common languages. Additional languages can be loaded by setting the --highlightLanguages option.
    • Changed default of --excludePrivate to true.
    • Renamed --sitemapBaseUrl to --hostedBaseUrl to reflect that it can be used for more than just the sitemap.
    • Removed deprecated navigation.fullTree option.
    • Removed --media option, TypeDoc will now detect image links within your comments and markdown documents and automatically copy them to the site.
    • Removed --includes option, use the @ document tag instead.
    • Removed --stripYamlFrontmatter option, TypeDoc will always do this now.
    • Renamed the --htmlLang option to --lang.
    • Removed the --gaId option for Google Analytics integration and corresponding analytics theme member, #2600.
    • All function-likes may now have comments directly attached to them. This is a change from previous versions of TypeDoc where functions comments
      were always moved down to the signature level. This mostly worked, but caused problems with type aliases, so was partially changed in 0.25.13.
      This change was extended to apply not only to type aliases, but also other function-likes declared with variables and callable properties.
      As a part of this change, comments on the implementation signature of overloaded functions will now be added to the function reflection, and will
      not be inherited by signatures of that function, #2521.
    • API: TypeDoc now uses a typed event emitter to provide improved type safety, this found a bug where Converter.EVENT_CREATE_DECLARATION
      was emitted for ProjectReflection in some circumstances.
    • API: MapOptionDeclaration.mapError has been removed.
    • API: Deprecated BindOption decorator has been removed.
    • API: DeclarationReflection.indexSignature has been renamed to DeclarationReflection.indexSignatures.
      Note: This also affects JSON serialization. TypeDoc will support JSON output from 0.25 through at least 0.26.
    • API: JSONOutput.SignatureReflection.typeParameter has been renamed to typeParameters to match the JS API.
    • API: DefaultThemeRenderContext.iconsCache has been removed as it is no longer needed.
    • API: DefaultThemeRenderContext.hook must now be passed context if required by the hook.

    Features

    • Added support for TypeScript 5.5.
    • Added new --projectDocuments option to specify additional Markdown documents to be included in the generated site #247, #1870, #2288, #2565.
    • TypeDoc now has the architecture in place to support localization. No languages besides English
      are currently shipped in the package, but it is now possible to add support for additional languages, #2475.
    • Added support for a packageOptions object which specifies options that should be applied to each entry point when running with --entryPointStrategy packages, #2523.
    • --hostedBaseUrl will now be used to generate a <link rel="canonical"> element in the project root page, #2550.
    • Added support for documenting individual elements of a union type, #2585.
      Note: This feature is only available on type aliases directly containing unions.
    • TypeDoc will now log the number of errors/warnings errors encountered, if any, after a run, #2581.
    • New option, --customFooterHtml to add custom HTML to the generated page footer, #2559.
    • TypeDoc will now copy modifier tags to children if specified in the --cascadedModifierTags option, #2056.
    • TypeDoc will now warn if mutually exclusive modifier tags are specified for a comment (e.g. both @ alpha and @ beta), #2056.
    • Groups and categories can now be collapsed in the page body, #2330.
    • Added support for JSDoc @ hideconstructor tag.
      This tag should only be used to work around TypeScript#58653, prefer the more general @ hidden/@ ignore tag to hide members normally, #2577.
    • Added --useHostedBaseUrlForAbsoluteLinks option to use the --hostedBaseUrl option to produce absolute links to pages on a site, #940.
    • Tag headers now generate permalinks in the default theme, #2308.
    • TypeDoc now attempts to use the "most likely name" for a symbol if the symbol is not present in the documentation, #2574.
    • Fixed an issue where the "On This Page" section would include markdown if the page contained headings which contained markdown.
    • TypeDoc will now warn if a block tag is used which is not defined by the --blockTags option.
    • Added three new sort strategies documents-first, documents-last, and alphabetical-ignoring-documents to order markdown documents.
    • Added new --alwaysCreateEntryPointModule option. When set, TypeDoc will always create a Module for entry points, even if only one is provided.
      If --projectDocuments is used to add documents, this option defaults to true, otherwise, defaults to false.
    • Added new --highlightLanguages option to control what Shiki language packages are loaded.
    • TypeDoc will now render union elements on new lines if there are more than 3 items in the union.
    • TypeDoc will now only render the "Type Declaration" section if it will provide additional information not already presented in the page.
      This results in significantly smaller documentation pages in many cases where that section would just repeat what has already been presented in the rendered type.
    • Added comment.beforeTags and comment.afterTags hooks for plugin use.
      Combined with CommentTag.skipRendering this can be used to provide custom tag handling at render time.

    Bug Fixes

    • TypeDoc now supports objects with multiple index signatures, #2470.
    • Header anchor links in rendered markdown are now more consistent with headers generated by TypeDoc, #2546.
    • Types rendered in the Returns header are now properly colored, #2546.
    • Links added with the navigationLinks option are now moved into the pull out navigation on mobile displays, #2548.
    • @ license and @ import comments will be ignored at the top of files, #2552.
    • Fixed issue in documentation validation where constructor signatures where improperly considered not documented, #2553.
    • Keyboard focus is now visible on dropdowns and checkboxes in the default theme, #2556.
    • The color theme label in the default theme now has an accessible name, #2557.
    • Fixed issue where search results could not be navigated while Windows Narrator was on, #2563.
    • charset is now correctly cased in <meta> tag generated by the default theme, #2568.
    • Fixed very slow conversion on Windows where Msys git was used by typedoc to discover repository links, #2586.
    • Validation will now be run in watch mode, #2584.
    • Fixed an issue where custom themes which added dependencies in the <head> element could result in broken icons, #2589.
    • @ default and @ defaultValue blocks are now recognized as regular blocks if they include inline tags, #2601.
    • Navigation folders sharing a name will no longer be saved with a shared key to localStorage.
    • The --hideParameterTypesInTitle option no longer applies when rendering function types.
    • Broken @ link tags in readme files will now cause a warning when link validation is enabled.
    • Fixed externalSymbolLinkMappings option's support for meanings in declaration references.
    • Buttons to copy code now have the type=button attribute set to avoid being treated as submit buttons.
    • --hostedBaseUrl will now implicitly add a trailing slash to the generated URL.

    Thanks!

    Unreleased

  • 0.26.0-beta.5 - 2024-06-16
  • 0.26.0-beta.4 - 2024-06-16
  • 0.26.0-beta.3 - 2024-06-09
  • 0.26.0-beta.2 - 2024-06-01
  • 0.26.0-beta.1 - 2024-05-06
  • 0.26.0-beta.0 - 2024-05-04
  • 0.25.13 - 2024-04-07

    Features

    • Added gitRevision:short placeholder option to --sourceLinkTemplate option, #2529.
      Links generated by TypeDoc will now default to using the non-short git revision.
    • Moved "Generated by TypeDoc" footer into a <footer> tag, added footer.begin and footer.end
      render hooks for use by custom plugins, #2532.

    Bug Fixes

    • Fixed conversion of NoInfer missing type parameter reference, #2539.
    • Linking to a member on a page no longer incorrectly claims that
      "This member is normally hidden due to your filter settings" for every member.

    Thanks!

  • 0.25.12 - 2024-03-10

    Features

    • Added support for TypeScript 5.4, #2517.

    Bug Fixes

    • Updated page font to work around issues with Mac rendering, #2518.

    Thanks!

  • 0.25.11 - 2024-03-06

    Bug Fixes

    • Fixed an issue introduced with 0.25.10 which causes the page index to initially render empty, #2514.
    • "On This Page" section is now smarter when handling page headings which do not follow the normal h1>h2>h3 process, #2515.
  • 0.25.10 - 2024-03-03

    Bug Fixes

    • Constructed references to enum types will be properly linked with @ interface, #2508.
    • Comments on property-methods will no longer be duplicated in generated documentation, #2509.
    • Reduced rendered docs size by writing icons to a referenced SVG asset, #2505.
      For TypeDoc's docs, this reduced the rendered documentation size by ~30%.
    • The HTML docs now attempt to reduce repaints caused by dynamically loading the navigation, #2491.
    • When navigating to a link that contains an anchor, the page will now be properly highlighted in the page navigation.
  • 0.25.9 - 2024-02-26

    Features

    • Literal numeric unions will now be sorted during conversion, #2502.

    Bug Fixes

    • Module readmes will now be included in JSON output, #2500.
    • Fixed crash when --excludeNotDocumented was used and the project contained a reference to a removed signature, #2496.
    • Fixed crash when converting an infinitely recursive type via a new --maxTypeConversionDepth option, #2507.
    • Type links in "Parameters" and "Type Parameters" sections of the page will now be correctly colored.

    Thanks!

  • 0.25.8 - 2024-02-09

    Features

    • Added a new --sitemapBaseUrl option. When specified, TypeDoc will generate a sitemap.xml in your output folder that describes the site, #2480.
    • Added support for the @ class tag. When added to a comment on a variable or function, TypeDoc will convert the member as a class, #2479.
      Note: This should only be used on symbols which actually represent a class, but are not declared as a class for some reason.
    • Added support for @ groupDescription and @ categoryDescription to provide a description of groups and categories, #2494.
    • API: Exposed Context.getNodeComment for plugin use, #2498.

    Bug Fixes

    • Fixed an issue where a namespace would not be created for merged function-namespaces which are declared as variables, #2478.
    • A class which implements itself will no longer cause a crash when rendering HTML, #2495.
    • Variable functions which have construct signatures will no longer be converted as functions, ignoring the construct signatures.
    • The class hierarchy page will now include classes whose base class is not included in the documentation, #2486.
    • Fixed an issue where, if the index section was collapsed when loading the page, all content within it would be hidden until expanded, and a member visibility checkbox was changed.
    • API: Context.programs will no longer contain duplicates, #2498.
  • 0.25.7 - 2024-01-08

    Bug Fixes

    • Fixed an issue where a namespace would not be created for merged function-namespaces only containing types, #2476.
    • Fixed an infinite loop when converting a union type which directly contained another union type which refers to itself, #2469.
  • 0.25.6 - 2024-01-01
  • 0.25.5 - 2024-01-01
  • 0.25.4 - 2023-11-26
  • 0.25.3 - 2023-10-29
  • 0.25.2 - 2023-10-08
  • 0.25.1 - 2023-09-04
  • 0.25.0 - 2023-08-25
  • 0.24.8 - 2023-06-04
  • 0.24.7 - 2023-05-08
  • 0.24.6 - 2023-04-24
  • 0.24.5 - 2023-04-22
  • 0.24.4 - 2023-04-16
  • 0.24.3 - 2023-04-16
  • 0.24.2 - 2023-04-15
  • 0.24.1 - 2023-04-09
  • 0.24.0 - 2023-04-08
  • 0.24.0-beta.8 - 2023-04-03
  • 0.24.0-beta.7 - 2023-03-26
  • 0.24.0-beta.6 - 2023-03-25
  • 0.24.0-beta.5 - 2023-03-25
  • 0.24.0-beta.4 - 2023-03-25
  • 0.24.0-beta.3 - 2023-03-12
  • 0.24.0-beta.2 - 2023-03-06
  • 0.24.0-beta.1 - 2023-03-05
  • 0.23.28 - 2023-03-19
  • 0.23.27 - 2023-03-16
  • 0.23.26 - 2023-02-26
  • 0.23.25 - 2023-02-11
  • 0.23.24 - 2023-01-07
  • 0.23.23 - 2022-12-18
  • 0.23.22 - 2022-12-11
  • 0.23.21 - 2022-11-14
  • 0.23.20 - 2022-11-03
  • 0.23.19 - 2022-10-28
  • 0.23.18 - 2022-10-23
  • 0.23.17 - 2022-10-18
  • 0.23.16 - 2022-10-10
  • 0.23.15 - 2022-09-18
  • 0.23.14 - 2022-09-03
  • 0.23.13 - 2022-09-01
  • 0.23.12 - 2022-08-31
  • 0.23.11 - 2022-08-26
  • 0.23.10 - 2022-07-31
  • 0.23.9 - 2022-07-24
  • 0.23.8 - 2022-07-17
  • 0.23.7 - 2022-07-09
  • 0.23.6 - 2022-07-08
  • 0.23.5 - 2022-07-02
  • 0.23.4 - 2022-07-02
  • 0.23.3 - 2022-07-01
  • 0.23.2 - 2022-06-28
  • 0.23.1 - 2022-06-26
  • 0.23.0 - 2022-06-26
  • 0.23.0-beta.7 - 2022-06-25
  • 0.23.0-beta.6 - 2022-06-25
  • 0.23.0-beta.5 - 2022-06-20
  • 0.23.0-beta.4 - 2022-06-04
  • 0.23.0-beta.3 - 2022-06-03
  • 0.23.0-beta.2 - 2022-05-30
  • 0.23.0-beta.1 - 2022-04-19
  • 0.23.0-beta.0 - 2022-04-17
  • 0.22.18 - 2022-06-25
from typedoc GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade typedoc from 0.22.18 to 0.26.2.

See this package in npm:
typedoc

See this project in Snyk:
https://app.snyk.io/org/cachiman/project/4cdf1918-fe83-44b2-b1ef-93772718f1d7?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
Copy link

google-cla bot commented Jul 18, 2024

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants