Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the npm_and_yarn group group with 2 updates #385

Merged
merged 2 commits into from
Mar 8, 2024
Merged

chore(deps): bump the npm_and_yarn group group with 2 updates #385

merged 2 commits into from
Mar 8, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 8, 2024

Bumps the npm_and_yarn group group with 2 updates: markdownlint-cli and markdown-it.

Updates markdownlint-cli from 0.24.0 to 0.39.0

Release notes

Sourced from markdownlint-cli's releases.

0.39.0

  • Update markdownlint dependency to 0.33.0
    • Add MD055/table-pipe-style, MD056/table-column-count
    • Improve MD005/MD007/MD024/MD026/MD038
    • Incorporate micromark-extension-directive
    • Improve JSON schema, document validation
  • Handle trailing commas in JSONC configuration
  • Update all dependencies via Dependabot

0.38.0

  • Update markdownlint dependency to 0.32.1
    • Remove deprecated MD002/MD006
    • Remove rule aliases for "header"
    • Add MD054/link-image-style
    • Use micromark in MD005/MD007/MD030
    • Improve MD022/MD026/MD034/MD037/MD038/MD045/MD051
  • Remove support for end-of-life Node version 16
  • Update all dependencies via Dependabot

0.37.0

  • Update markdownlint dependency to 0.31.1
    • Improve MD032/MD034/MD037/MD043/MD044/MD051/MD052
    • Improve performance
  • Update all dependencies via Dependabot

0.36.0

  • Update markdownlint dependency to 0.30.0
    • Use micromark in MD022/MD026/MD032/MD037/MD045/MD051
    • Incorporate micromark-extension-math for math syntax
    • Allow custom rules to override information URL
  • Update all dependencies via Dependabot

0.35.0

  • Update markdownlint dependency to 0.29.0
    • Update micromark parser dependencies for better performance
    • Use micromark in MD049/MD050
    • Improve MD034/MD037/MD044/MD049/MD050
  • Update all dependencies via Dependabot

0.34.0

  • Update markdownlint dependency to 0.28.2
    • Introduce micromark parser for better positional data (internal only)
    • Use micromark in MD013/MD033/MD034/MD035/MD038/MD044/MD052/MD053
  • Update all dependencies via Dependabot

0.33.0

  • Update markdownlint dependency to 0.27.0
    • Improve MD011/MD013/MD022/MD031/MD032/MD033/MD034/MD040/MD043/MD051/MD053
    • Generate/separate documentation
    • Improve documentation

... (truncated)

Commits
  • c9ea831 Bump version 0.39.0
  • 539c188 Add trailing commas to JSONC test configuration, update use of jsonc-parser p...
  • 7477055 Bump jsonc-parser from 3.2.0 to 3.2.1
  • e785e42 Make scoped custom rule package identifiers work with the --rules parameter (...
  • e7939f7 Bump ava from 6.0.1 to 6.1.0 (#450)
  • 64c05e1 Bump markdownlint from 0.32.1 to 0.33.0 (#448) (closes #437)
  • 1d2f248 Bump version 0.38.0
  • 8f3daa1 Bump ava from 6.0.0 to 6.0.1
  • aaa4119 Bump ava from 5.3.1 to 6.0.0
  • 770817b Remove support for end-of-life Node.js version 16.
  • Additional commits viewable in compare view

Updates markdown-it from 11.0.0 to 12.0.5

Changelog

Sourced from markdown-it's changelog.

[12.0.5] - 2021-04-15

Fixed

  • HTML block tags with === inside are no longer incorrectly interpreted as headers, #772.
  • Fix table/list parsing ambiguity, #767.

[12.0.4] - 2020-12-20

Fixed

  • Fix crash introduced in 12.0.3 when processing strikethrough (~~) and similar plugins, #742.
  • Avoid fenced token mutation, #745.

[12.0.3] - 2020-12-07

Fixed

  • [](https://github.com/markdown-it/markdown-it/blob/master/<foo<bar>) is no longer a valid link.
  • [](https://github.com/markdown-it/markdown-it/blob/master/url (xxx()) is no longer a valid link.
  • [](https://github.com/markdown-it/markdown-it/blob/master/url\ xxx) is no longer a valid link.
  • Fix performance issues when parsing links (#732, #734), backticks, (#733, #736), emphases (#735), and autolinks (#737).
  • Allow newline in <? ... ?> in an inline context.
  • Allow <meta> html tag to appear in an inline context.

[12.0.2] - 2020-10-23

Fixed

  • Three pipes (|\n|\n|) are no longer rendered as a table with no columns, #724.

[12.0.1] - 2020-10-19

Fixed

  • Fix tables inside lists indented with tabs, #721.

[12.0.0] - 2020-10-14

Added

  • .gitattributes, force unix eol under windows, for development.

Changed

  • Added 3rd argument to highlight(code, lang, attrs), #626.
  • Rewrite tables according to latest GFM spec, #697.
  • Use rollup.js to browserify sources.
  • Drop bower.json (bower reached EOL).
  • Deps bump.
  • Tune specsplit.js options.
  • Drop Makefile in favour of npm scrips.

Fixed

  • Fix mappings for table rows (amended fix made in 11.0.1), #705.
  • %25 is no longer decoded in beautified urls, #720.

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump the npm_and_yarn group group with 2 updates
c88d9df 
Bumps the npm_and_yarn group group with 2 updates: [markdownlint-cli](https://github.com/igorshubovych/markdownlint-cli) and [markdown-it](https://github.com/markdown-it/markdown-it).


Updates `markdownlint-cli` from 0.24.0 to 0.39.0
- [Release notes](https://github.com/igorshubovych/markdownlint-cli/releases)
- [Commits](igorshubovych/markdownlint-cli@v0.24.0...v0.39.0)

Updates `markdown-it` from 11.0.0 to 12.0.5
- [Changelog](https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md)
- [Commits](markdown-it/markdown-it@11.0.0...12.0.5)

---
updated-dependencies:
- dependency-name: markdownlint-cli
  dependency-type: direct:development
  dependency-group: npm_and_yarn-security-group
- dependency-name: markdown-it
  dependency-type: indirect
  dependency-group: npm_and_yarn-security-group
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 8, 2024
@dependabot dependabot bot mentioned this pull request Mar 8, 2024
Closed
@github-actions github-actions bot added the deps label Mar 8, 2024
shanejonas
shanejonas reviewed Mar 8, 2024
View reviewed changes
spec.md Show resolved Hide resolved
@BelfordZ BelfordZ merged commit 0e08a5c into master Mar 8, 2024
3 checks passed
@BelfordZ BelfordZ deleted the dependabot/npm_and_yarn/npm_and_yarn-security-group-f1bc5e6b07 branch March 8, 2024 16:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@BelfordZ BelfordZ BelfordZ left review comments

@shanejonas shanejonas shanejonas approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file deps ops spec
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@shanejonas @BelfordZ