search

Access-America / Citizen-Center

A citizenship portal for Americans.
https://www.citizencenter.us
MIT License
10 stars 3 forks source link

fix(deps): bump uswds from 2.12.0 to 2.13.1 in /web_client #401

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps uswds from 2.12.0 to 2.13.1.

Release notes

Sourced from uswds's releases.

USWDS 2.13.1

What's new in USWDS 2.13.1

Improvements and bug fixes

  • Fix Date Picker input bug in Safari. We fixed a bug where date picker selections would not propagate into the input field in Safari. (uswds/uswds#4456)
  • Fix external link icon display bug in Safari. We fixed a bug that resulted in colored bars on the top and bottom of external link icons in Safari. (uswds/uswds#4439)
  • Prevent infinite loops in divide function. We improved the logic of the divide function to abort immediately on an attempt to divide by zero. Thanks @​aduth! (uswds/uswds#4438)
  • Optimize performance of luminance function. We used a simple look-up table for single-channel luminance values to dramatically improve the performance of luminance calculations. Thanks @​aduth! (uswds/uswds#4437)
  • Improve package exports to allow importing in Webpack 5. We added explicit exports to USWDS assets so Webpack 5 can access them. Thanks @​tyduptyler13 and @​pearl-truss! (uswds/uswds#4461, uswds/uswds#4468)
  • Fix Dropdown chevron display in Windows high contrast mode. We updated the Dropdown styles to allow the chevron to appear in any forced color mode. Thanks @​trimspa! (uswds/uswds#4457)

Dependency updates

None

0 vulnerabilities in regular dependencies (dependencies for USWDS projects installed with npm install uswds)

Internal only: 2 low, 22 moderate, 19 high, 1 critical vulnerabilities in devDependencies (development dependencies)

Release ZIP SHA-256 hash: c048e4958cbc51a5512d89e321bc7bb90aa3bec00539330042125d6b2c0a0c45

USWDS 2.13.0

What's new in USWDS 2.13.0

Breaking changes

⚠️ Note: This release contains a couple accessibility-related updates that require a manual markup change.

⚠️ Improved resilience of icon-only functionality. We updated a couple components that use icon-only buttons so that they provide a text equivalent if the image path is broken and does not load. Specifically, this applies to two specific components:

  • The small variant of the Search button: The button that includes an image of a magnifying glass
  • The social icons in the Footer: This includes the Facebook, Twitter, YouTube, Instagram, and RSS buttons.

If you use these components, they will require a markup change.

Small search button

Old markup

<button class="usa-button" type="submit">
  <span class="usa-sr-only">Search</span>
</button>

New markup as of 2.13.0

<button class="usa-button" type="submit">    
  <img src="{{ your uswds image path }}/usa-icons-bg/search--white.svg" class="usa-search__submit-icon" alt="Search">
</button>

Footer social buttons

Old markup

</tr></table>

... (truncated)

Commits
  • b49291b Merge pull request #4471 from uswds/release-2.13.1
  • 13d4b50 Update uswds-2.13.1-zip-hash.txt
  • 9c9bc6b Merge branch 'develop' into release-2.13.1
  • 5847581 Merge pull request #4468 from pearl-truss/fix-webpack5-package-export-issues
  • 540dff1 Create uswds-2.13.1-zip-hash.txt
  • c9279cf 2.13.1
  • 3a04325 Update .snyk
  • 81fa8b6 Update package-lock.json
  • e410180 Update references to 2.13.1
  • d8c3707 Merge pull request #4470 from uswds/dw-update-exports
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 years ago

Superseded by #416.