Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Build(deps): Bump @angular/compiler from 12.0.3 to 12.2.17 #820

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Nov 27, 2022

Bumps @angular/compiler from 12.0.3 to 12.2.17.

Release notes

Sourced from @​angular/compiler's releases.

v12.2.17

12.2.17 (2022-11-22)

Breaking Changes

core

  • Existing iframe usages may have security-sensitive attributes applied as an attribute or property binding in a template or via host bindings in a directive. Such usages would require an update to ensure compliance with the new stricter rules around iframe bindings.

core

Commit Description
fix - b871db57da hardening attribute and property binding rules for elements

Special Thanks

Andrew Kushnir, Joey Perrott and Paul Gschwendtner

v12.2.16

12.2.16 (2022-01-27)

ngcc

Commit Type Description
460befd693 fix support element accesses for export declarations (#44824)

Special Thanks

Andrew Kushnir and JoostK

Changelog

Sourced from @​angular/compiler's changelog.

12.2.17 (2022-11-22)

Breaking Changes

core

  • Existing iframe usages may have security-sensitive attributes applied as an attribute or property binding in a template or via host bindings in a directive. Such usages would require an update to ensure compliance with the new stricter rules around iframe bindings.

core

Commit Type Description
b871db57da fix hardening attribute and property binding rules for elements (#48059)

Special Thanks

Andrew Kushnir, Andrew Scott, George Looshch, Joey Perrott and Paul Gschwendtner

13.3.12 (2022-11-21)

Breaking Changes

core

  • Existing iframe usages may have security-sensitive attributes applied as an attribute or property binding in a template or via host bindings in a directive. Such usages would require an update to ensure compliance with the new stricter rules around iframe bindings.

core

Commit Type Description
b1d7b79ff4 fix hardening attribute and property binding rules for elements (#48029)

Special Thanks

Andrew Kushnir, Andrew Scott, George Looshch, Joey Perrott and Paul Gschwendtner

14.2.12 (2022-11-21)

Breaking Changes

core

  • Existing iframe usages may have security-sensitive attributes applied as an attribute or property binding in a template or via host bindings in a directive. Such usages would require an update to ensure compliance with the new stricter rules around iframe bindings.

core

Commit Type Description
54814c8e9b fix hardening attribute and property binding rules for elements (#48028)

Special Thanks

Andrew Kushnir

15.0.0 (2022-11-16)

Blog post "Angular v15 is now available".

Breaking Changes

compiler

  • Keyframes names are now prefixed with the component's "scope name". For example, the following keyframes rule in a component definition,

... (truncated)

Commits
  • b871db5 fix(core): hardening attribute and property binding rules for <iframe> elements
  • e3db038 fix(compiler): ensure that partially compiled queries can handle forward refe...
  • 8354e23 refactor(compiler): rename R3ProviderExpression and associated helpers (#44124)
  • 242a099 Revert "fix(compiler): support i18n interpolated only attribute bindings (#43...
  • b9c885b fix(compiler): support i18n interpolated only attribute bindings (#43815)
  • b4b4410 fix(core): handle invalid constructor parameters in partial factory declarati...
  • ca6bcb7 Revert "fix(language-service): provide dom event completions (#43299)"
  • c8f8d7d fix(language-service): provide dom event completions (#43299)
  • 05e1adb test(compiler): add a test for parsing multiline expressions in attributes (#...
  • 4cbeee7 refactor(compiler): define interfaces for each lexer token (#43132)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [@angular/compiler](https://github.com/angular/angular/tree/HEAD/packages/compiler) from 12.0.3 to 12.2.17.
- [Release notes](https://github.com/angular/angular/releases)
- [Changelog](https://github.com/angular/angular/blob/main/CHANGELOG.md)
- [Commits](https://github.com/angular/angular/commits/12.2.17/packages/compiler)

---
updated-dependencies:
- dependency-name: "@angular/compiler"
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Nov 27, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants