Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump jquery from 3.4.1 to 3.5.0 #64884

Merged
merged 5 commits into from
May 5, 2020
Merged

Bump jquery from 3.4.1 to 3.5.0 #64884

merged 5 commits into from
May 5, 2020

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 30, 2020
edited by jportner
Loading

Bumps jquery from 3.4.1 to 3.5.0.

Commits
  • 7a0a850 3.5.0
  • 8570a08 Release: Update AUTHORS.txt
  • da3dd85 Ajax: Do not execute scripts for unsuccessful HTTP responses
  • 065143c Ajax: Overwrite s.contentType with content-type header value, if any
  • 1a4f10d Tests: Blacklist one focusin test in IE
  • 9e15d6b Event: Use only one focusin/out handler per matching window & document
  • 966a709 Manipulation: Skip the select wrapper for <option> outside of IE 9
  • 1d61fd9 Manipulation: Make jQuery.htmlPrefilter an identity function
  • 04bf577 Selector: Update Sizzle from 2.3.4 to 2.3.5
  • 7506c9c Build: Resolve Travis config warnings
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by mgol, a new releaser for jquery since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Edit by @jportner:

Needed to apply some code changes in f562e84 to prevent this from breaking some webpages. jQuery changed the htmlPrefilter sanitization method to be more strict, so self-closing tags with no content are now stripped out of the DOM. This commit simply changes those elements to use explicit close tags.

@dependabot dependabot bot requested a review from a team as a code owner April 30, 2020 11:48
@kibanamachine
Copy link
Contributor

Since this is a community submitted pull request, a Jenkins build has not been kicked off automatically. Can an Elastic organization member please verify the contents of this patch and then kick off a build manually?

@spalger spalger added release_note:skip Skip the PR/issue when compiling release notes Team:Operations Team label for Operations Team v7.7.1 v7.8.0 v8.0.0 labels Apr 30, 2020
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-operations (Team:Operations)

@spalger
Copy link
Contributor

spalger commented Apr 30, 2020

retest

@jportner
Don't use self-closing tags for HTML elements that may have content
f562e84 
The jQuery update includes a breaking change in the `htmlPrefilter`
sanitization method. It handles self-closing tags differently when
they are applied to HTML elements that may have content. Angular
manipulates the DOM to add content to elements, and some of
Kibana's usage of Angular included non-standard self-closing tags.
This commit changes those elements to use separate open/close tags.
@dependabot dependabot bot requested a review from a team April 30, 2020 21:57
@dependabot dependabot bot requested a review from a team as a code owner April 30, 2020 21:57
@dependabot dependabot bot requested a review from a team April 30, 2020 21:57
@jportner
Copy link
Contributor

retest

@jportner
Copy link
Contributor

jportner commented May 1, 2020

@elasticmachine merge upstream

@jportner
Copy link
Contributor

jportner commented May 1, 2020

retest

@jportner
Copy link
Contributor

jportner commented May 5, 2020

@elasticmachine merge upstream

@jportner
Copy link
Contributor

jportner commented May 5, 2020

retest

thomasneirynck
thomasneirynck approved these changes May 5, 2020
View reviewed changes
Copy link
Contributor

@thomasneirynck thomasneirynck left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

maps/* tested and works

flash1293
flash1293 approved these changes May 5, 2020
View reviewed changes
Copy link
Contributor

@flash1293 flash1293 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tested locally and LGTM - didn't notice anything broken in Discover/Visualize/Dashboard/Graph

igoristic
igoristic approved these changes May 5, 2020
View reviewed changes
Copy link
Contributor

@igoristic igoristic left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tested, and everything looks good from Stack Monitoring pov ✅

@kibanamachine
Copy link
Contributor

💚 Build Succeeded

History

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

@jportner jportner merged commit 23282a2 into master May 5, 2020
@jportner jportner deleted the dependabot/npm_and_yarn/jquery-3.5.0 branch May 5, 2020 17:31
@jportner jportner added the v6.8.9 label May 5, 2020
This was referenced May 5, 2020
Merged
Merged
jportner pushed a commit to jportner/kibana that referenced this pull request May 5, 2020
@dependabot @jportner
Bump jquery from 3.4.1 to 3.5.0 (elastic#64884)
2a861ce 
# Conflicts:
#	packages/kbn-ui-shared-deps/package.json
#	src/plugins/visualize/public/application/editor/editor.html
#	x-pack/plugins/monitoring/public/directives/main/index.html
jportner pushed a commit to jportner/kibana that referenced this pull request May 5, 2020
@dependabot @jportner
Bump jquery from 3.4.1 to 3.5.0 (elastic#64884)
9379f71 
# Conflicts:
#	packages/kbn-ui-shared-deps/package.json
#	src/plugins/dashboard/public/application/listing/dashboard_listing_ng_wrapper.html
#	src/plugins/visualize/public/application/editor/editor.html
#	x-pack/package.json
#	x-pack/plugins/graph/public/angular/templates/index.html
#	x-pack/plugins/graph/public/angular/templates/listing_ng_wrapper.html
#	x-pack/plugins/maps/public/angular/listing_ng_wrapper.html
#	x-pack/plugins/monitoring/public/directives/main/index.html
#	yarn.lock
@jportner jportner mentioned this pull request May 5, 2020
Merged
jportner added a commit that referenced this pull request May 5, 2020
@jportner
[7.7] Bump jquery from 3.4.1 to 3.5.0 (#64884) (#65325)
b4e79f3
jportner added a commit that referenced this pull request May 5, 2020
@jportner
[6.8] Bump jquery from 3.4.1 to 3.5.0 (#64884) (#65336)
a72b8ce
jportner added a commit that referenced this pull request May 6, 2020
@jportner
[7.x] Bump jquery from 3.4.1 to 3.5.0 (#64884) (#65319)
4bd2a46
jportner added a commit to jportner/kibana that referenced this pull request May 12, 2020
@jportner
Revert "[6.8] Bump jquery from 3.4.1 to 3.5.0 (elastic#64884) (elasti…
7618b6d 
…c#65336)"

This reverts commit a72b8ce.
jportner added a commit to jportner/kibana that referenced this pull request May 19, 2020
@jportner
[6.8] Bump jquery from 3.4.1 to 3.5.0 (elastic#64884) (elastic#65336)
86cab2c
jportner added a commit that referenced this pull request May 21, 2020
@jportner
[6.8] Bump jquery from 3.4.1 to 3.5.0 (#64884) again (#67036)
fbe078c
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@igoristic igoristic igoristic approved these changes

@thomasneirynck thomasneirynck thomasneirynck approved these changes

@flash1293 flash1293 flash1293 approved these changes

@tylersmalley tylersmalley tylersmalley approved these changes

Assignees
No one assigned
Labels
backported 💝community release_note:skip Skip the PR/issue when compiling release notes Team:Operations Team label for Operations Team v6.8.9 v7.7.1 v7.8.0 v8.0.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
8 participants
@kibanamachine @elasticmachine @spalger @jportner @tylersmalley @flash1293 @thomasneirynck @igoristic