Bump uswds from 2.12.1 to 2.13.1

[dependabot]

Bumps uswds from 2.12.1 to 2.13.1.

Release notes

Sourced from uswds's releases.

USWDS 2.13.1

What's new in USWDS 2.13.1

Improvements and bug fixes

• Fix Date Picker input bug in Safari. We fixed a bug where date picker selections would not propagate into the input field in Safari. (uswds/uswds#4456)
• Fix external link icon display bug in Safari. We fixed a bug that resulted in colored bars on the top and bottom of external link icons in Safari. (uswds/uswds#4439)
• Prevent infinite loops in divide function. We improved the logic of the divide function to abort immediately on an attempt to divide by zero. Thanks @​aduth! (uswds/uswds#4438)
• Optimize performance of luminance function. We used a simple look-up table for single-channel luminance values to dramatically improve the performance of luminance calculations. Thanks @​aduth! (uswds/uswds#4437)
• Improve package exports to allow importing in Webpack 5. We added explicit exports to USWDS assets so Webpack 5 can access them. Thanks @​tyduptyler13 and @​pearl-truss! (uswds/uswds#4461, uswds/uswds#4468)
• Fix Dropdown chevron display in Windows high contrast mode. We updated the Dropdown styles to allow the chevron to appear in any forced color mode. Thanks @​trimspa! (uswds/uswds#4457)

Dependency updates

None

0 vulnerabilities in regular dependencies (dependencies for USWDS projects installed with npm install uswds)

Internal only: 2 low, 22 moderate, 19 high, 1 critical vulnerabilities in devDependencies (development dependencies)

Release ZIP SHA-256 hash: c048e4958cbc51a5512d89e321bc7bb90aa3bec00539330042125d6b2c0a0c45

USWDS 2.13.0

What's new in USWDS 2.13.0

Breaking changes

⚠️ Note: This release contains a couple accessibility-related updates that require a manual markup change.

⚠️ Improved resilience of icon-only functionality. We updated a couple components that use icon-only buttons so that they provide a text equivalent if the image path is broken and does not load. Specifically, this applies to two specific components:

• The small variant of the Search button: The button that includes an image of a magnifying glass
• The social icons in the Footer: This includes the Facebook, Twitter, YouTube, Instagram, and RSS buttons.

If you use these components, they will require a markup change.

Small search button

Old markup

<button class="usa-button" type="submit">
  <span class="usa-sr-only">Search</span>
</button>

New markup as of 2.13.0

<button class="usa-button" type="submit">    
  <img src="{{ your uswds image path }}/usa-icons-bg/search--white.svg" class="usa-search__submit-icon" alt="Search">
</button>

Footer social buttons

Old markup

</tr></table> 

... (truncated)

Commits

• b49291b Merge pull request #4471 from uswds/release-2.13.1
• 13d4b50 Update uswds-2.13.1-zip-hash.txt
• 9c9bc6b Merge branch 'develop' into release-2.13.1
• 5847581 Merge pull request #4468 from pearl-truss/fix-webpack5-package-export-issues
• 540dff1 Create uswds-2.13.1-zip-hash.txt
• c9279cf 2.13.1
• 3a04325 Update .snyk
• 81fa8b6 Update package-lock.json
• e410180 Update references to 2.13.1
• d8c3707 Merge pull request #4470 from uswds/dw-update-exports
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #439.