Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade antd from 5.18.0 to 5.18.1 #78

Closed
wants to merge 1 commit into from
Closed

[Snyk] Upgrade antd from 5.18.0 to 5.18.1 #78

wants to merge 1 commit into from

Conversation

fantasticmrdavid
Copy link
Owner

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade antd from 5.18.0 to 5.18.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.

  • The recommended version was released on 21 days ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Denial of Service (DoS)
SNYK-JS-WS-7266574		 554 Proof of Concept
high severity Improper Verification of Cryptographic Signature
SNYK-JS-BROWSERIFYSIGN-6037026		 554 No Known Exploit
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-SEMVER-3247795		 554 Proof of Concept
medium severity Uncontrolled Resource Consumption ('Resource Exhaustion')
SNYK-JS-TAR-6476909		 554 Proof of Concept
Release notes
Package name: antd
  • 5.18.1 - 2024-06-12
    • Typography
      • 🐞 Fix Typography component's ellipsis not working properly in pre tag. #49168 @ nova1751
      • 🐞 Fix Typography ellipsis sometimes not working in Safari. #49221
    • 🐞 Fix Space size setting to 0 did not take effect. #49192 @ coding-ice
    • 🐞 Fix padding of Progress text is invalid in cssinjs. #49250 @ vagusX
    • 🐞 Fix Modal close button's zIndex being incorrect in cssVar mode. #49238
    • 🐞 Fix Image width height being applied to preview images. #49259 @ nova1751
    • 🐞 Fix the icon of the Pagination page switcher disappears when hovering. #49262
    • 🐞 Fix Mentions not responding to Enter event when loading=true. #49292 @ wanpan11
    • 🐞 Fix Notification did not inherit App config properties. #49339 @ hemengke1997
    • 💄 Fix the text color of Drawer was incorrect in dark mode. #49217
    • 💄 Fix the style was not visible and the percent progress was not passed when customizing the indicator of Spin. #49211 @ wanpan11
    • DatePicker
      • 🐞 Fix the placement property of DatePicker/TimePicker was invalid. #49303
      • 💄 Fix the content in the DatePicker header area is not centered. #49332
    • TypeScript
    • 🌐 Locales
    • Typography
      • 🐞 修复 Typography 组件的 ellipsispre 标签中没有正常工作的问题。#49168 @ nova1751
      • 🐞 修复 Typography ellipsis 在 Safari 中有时不生效的问题。#49221
    • 🐞 修复 Space size 设置 0 不生效的问题。#49192 @ coding-ice
    • 🐞 修复 Progress 文本的 padding 在 cssinjs 下单位失效问题。#49250 @ vagusX
    • 🐞 修复 Modal 关闭按钮的 zIndexcssVar 模式下不正确的问题。#49238
    • 🐞 修复 Image width height 被应用到预览图片上的问题。#49259 @ nova1751
    • 🐞 修复 Pagination 页码切换器 hover 时图标消失的问题。#49262
    • 🐞 修复 Mentions 当 loading=true 时不响应 Enter 事件的问题。#49292 @ wanpan11
    • 🐞 修复 Notification 没有继承 App config 属性的问题。#49339 @ hemengke1997
    • 💄 修复 Drawer 在暗黑模式下,文本颜色不正确的问题。#49217
    • 💄 修复 Spin 自定义 indicator 时,样式不可见以及 percent 进度没有传递的问题。#49211 @ wanpan11
    • DatePicker
      • 🐞 修复 DatePicker/TimePicker placement 属性失效的问题。#49303
      • 💄 修复 DatePicker 头部区域内容不居中对齐的问题。#49332
    • TypeScript
    • 🌐 国际化
  • 5.18.0 - 2024-06-03
    • 🛎 Fix Button icon and text align issue by changing inline-block to inline-flex and simplify iconPosition implementation. #47318
    • Drawer
    • Form
      • 🆕 Form.Item add layout property to toggle layout mode. #49119 @ crazyair
      • 🆕 Form ref property supports to access the native element. #48841 @ wanpan11
      • 🆕 Form add clearOnDestroy property to clear form data when destroy. #48921 @ crazyair
    • Image
      • 🆕 Image add onReset and onClose properties. #48936 @ kiner-tang
      • 🆕 Image supports get imgInfo from arguments of toolbarRender and imageRender render functions. #48729 @ nova1751
    • notification
      • 🆕 notification add pauseOnHover property to pause the timer. #49024 @ yociduo
      • 🆕 notification add showProgress property to show the progress bar. #48353 @ yociduo
    • Progress
    • 🆕 Avatar.Group add max property for replace maxCountmaxStylemaxPopoverPlacement and maxPopoverTrigger properties. #49131 @ wanpan11
    • 🆕 Modal add loading property to show the skeleton. #48848 @ li-jia-nan
    • 🆕 Rate add keyboard property to ignore keyboard events. #49132 @ Wxh16144
    • 🆕 Spin support percent to render as progress. #48657
    • 🐞 Watermark add overflow: hidden style to prevent set height: 0 to hide the watermark case. #49130
    • 🐞 Anchor fix scroll animation lost bug when set replace property. #49136 @ mySkey
    • 🐞 Tour fix current argument of onClose is wrong. #49124
    • 💄 List.Item add styles and className properties. #49154 @ wanpan11
    • 🇯🇵 DatePicker add missing ja_JP translations. #49155 @ huyikai
    • 🛠 Simplify several logics and type definitions. #49146 #49156 #49169 #49162 @ coding-ice
    • 🛎 Button 默认布局由 inline-block 切换为 inline-flex 以修复图标和文字对齐问题,并简化了 iconPosition 的实现。#47318
    • Drawer
      • 🆕 Drawer 新增 drawerRender 属性以支持自定义渲染。#49125 @ crazyair
      • 🛠 Drawer 加载中的状态实现由 Spin 替换为 Skeleton。#48886 @ li-jia-nan
    • Form
    • Image
      • 🆕 Image 新增 onResetonClose 属性。#48936 @ kiner-tang
      • 🆕 Image 的 toolbarRenderimageRender 渲染函数入参新增 ImgInfo 信息。#48729 @ nova1751
    • notification
      • 🆕 notification 增加 pauseOnHover 属性以暂停计时器。#49024 @ yociduo
      • 🆕 notification 新增 showProgress 属性以显示进度条。#48353 @ yociduo
    • Progress
    • 🆕 Avatar.Group 新增 max 属性以替代 maxCountmaxStylemaxPopoverPlacementmaxPopoverTrigger#49131 @ wanpan11
    • 🆕 Modal 新增 loading 属性以展示加载中的状态。#48848 @ li-jia-nan
    • 🆕 Rate 新增 keyboard 属性以支持禁用键盘事件。#49132 @ Wxh16144
    • 🆕 Spin 支持 percent属性以进度形态展示。#48657
    • 🐞 Watermark 添加 overflow: hidden 样式以防止通过设置 height: 0 样式达到隐藏水印的效果。#49130
    • 🐞 Anchor 修复设置 replace 属性时滚动动画丢失的问题。#49136 @ mySkey
    • 🐞 Tour 修复 onClosecurrent 参数错误的问题。#49124
    • 💄 List.Item 增加 stylesclassNames 属性。#49154 @ wanpan11
    • 🇯🇵 DatePicker 补充 ja_JP 本地化文案。#49155 @ huyikai
    • 🛠 精简数处判断逻辑及类型定义。#49146 #49156 #49169 #49162 @ coding-ice
from antd GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade antd from 5.18.0 to 5.18.1
9a1b4d6 
Snyk has created this PR to upgrade antd from 5.18.0 to 5.18.1.

See this package in npm:
antd

See this project in Snyk:
https://app.snyk.io/org/fantasticmrdavid/project/a17e40dc-2e1a-4af7-8e87-779da9392295?utm_source=github&utm_medium=referral&page=upgrade-pr
@fantasticmrdavid fantasticmrdavid deleted the snyk-upgrade-24ec88ddeaa9279ed25e4e9fca349d39 branch August 6, 2024 00:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@fantasticmrdavid @snyk-bot