Update dependency bootstrap to v4.3.1

This PR contains the following updates:

Package	Type	Update	Change
bootstrap (source)	dependencies	minor	`4.0.0-beta` -> `4.3.1`

By merging this PR, the issue #6 will be automatically resolved and closed:

Severity	CVSS Score	CVE
Medium	6.1	CVE-2019-8331
Low	3.7	CVE-2016-10735

Release Notes

twbs/bootstrap (bootstrap)

### [`v4.3.1`](https://togithub.com/twbs/bootstrap/releases/tag/v4.3.1) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.3.0...v4.3.1) - **Security:** Fixed an XSS vulnerability (CVE-2019-8331) in our tooltip and popover plugins by implementing a new HTML sanitizer - Fixed a small issue with our RFS (responsive font sizes) mixins ### [`v4.3.0`](https://togithub.com/twbs/bootstrap/releases/tag/v4.3.0) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.2.1...v4.3.0) ##### Highlights - **New:** Added `.stretched-link` utility to make any anchor the size of it's nearest `position: relative` parent, perfect for entirely clickable cards! - **New:** Added `.text-break` utility for applying `word-break: break-word` - **New:** Added `.rounded-sm` and `.rounded-lg` for small and large `border-radius`. - **New:** Added `.modal-dialog-scrollable` modifier class for scrolling content *within* a modal. - **New:** Added responsive `.list-group-horizontal` modifier classes for displaying list groups as a horizontal row. - **Improved:** Reduced our compiled CSS by using `null` for variables that by default inherit their values from other elements (e.g., `$headings-color` was `inherit` and is now `null` until you modifier it in your custom CSS). - **Improved:** Badge focus styles now match their `background-color` like our buttons. - **Fixed:** Silenced bad selectors in our JS plugins for the `href` HTML attribute to avoid JavaScript errors. Please try to use [valid selectors](https://www.w3.org/TR/CSS21/syndata.html#value-def-identifier) or the `data-target` HTML attribute/`target` option where available. - **Fixed:** Reverted v4.2.1's change to the breakpoint and grid container Sass maps that blocked folks from upgrading when modifying those default variables. - **Fixed:** Restored `white-space: nowrap` to `.dropdown-toggle` (before v4.2.1 it was on all `.btn`s) so carets don't wrap to new lines. - **Deprecated:** `img-retina`, `invisible`, `float`, and `size` mixins are now deprecated and will be removed in v5. ##### Links - [Read the full ship list](https://togithub.com/twbs/bootstrap/issues/27893) - [Review the project board](https://togithub.com/twbs/bootstrap/projects/16) ### [`v4.2.1`](https://togithub.com/twbs/bootstrap/releases/tag/v4.2.1) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.1.3...v4.2.1) Bump to v4.2.1 to republish package on npm. [See v4.2.0 release notes](https://togithub.com/twbs/bootstrap/releases/tag/v4.2.0) for changes introduced in v4.2. ### [`v4.1.3`](https://togithub.com/twbs/bootstrap/releases/tag/v4.1.3) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.1.2...v4.1.3) - **Fixed:** Removed the `:not(:root)` selector from our `svg` Reboot styles, resolving an issue that caused all inline SVGs ignore `vertical-align` styles via single class due to higher specificity. - **Fixed:** Moved the browserslist config from our `package.json` to a separate file to avoid unintended inherited browser settings across npm projects. - **Fixed:** Buttons in custom file inputs are once again clickable when focused. - **Improved:** Bootstrap's plugins can now be imported separately in any contexts because they are now UMD ready. - **Improved:** `.form-control`s now have a fixed `height` to compensate for differences in computed height across different `type`s. This also fixes some IE alignment issues. - **Improved:** Added `Noto Color Emoji` to our system font stack for better rendering in Linux OSes. ### [`v4.1.2`](https://togithub.com/twbs/bootstrap/releases/tag/v4.1.2) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.1.1...v4.1.2) - Fixed an XSS vulnerability in tooltip, collapse, and scrollspy plugins - Improved how we query elements in our JavaScript plugins - Inline SVGs now have the same vertical alignment as images - Fixed issues with double transitions on carousels - Added Edge and IE10-11 fallbacks to our floating labels example - Various improvements to form controls, including disabled states on file inputs and unified focus styles for selects Checkout the [v4.1.2 ship list](https://togithub.com/twbs/bootstrap/issues/26423) and [GitHub project](https://togithub.com/twbs/bootstrap/projects/14) for the full details. ### [`v4.1.1`](https://togithub.com/twbs/bootstrap/releases/tag/v4.1.1) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.1.0...v4.1.1) **Our first patch release for Bootstrap 4!** Here's a quick rundown of some of the changes: - Added validation styles for file inputs - Improved printing of dark tables - Suppressed that `text-hide` deprecation notice by default - Cleaned up some JS globals and improve coverage - Bumped dependencies, namely Jekyll - Fixed docs issue with incorrect name for our monospace font utility Checkout the [v4.1.1 ship list](https://togithub.com/twbs/bootstrap/issues/25971) and [GitHub project](https://togithub.com/twbs/bootstrap/projects/13) for the full details. ### [`v4.1.0`](https://togithub.com/twbs/bootstrap/releases/tag/v4.1.0) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.0.0...v4.1.0) - Added new custom range form control. - Added new `.carousel-fade` modifier to switch carousel from horizontal sliding to crossfade. - Added new `.dropdown-item-text` for plaintext dropdown items. - Added new `.flex-fill`, `.flex-grow-*`, and `.flex-shrink-*` utilities. - Added new `.table-borderless` variant for tables. - Added new `.text-monospace` utility. - Added new `.text-body` (default body color), `.text-black-50` (50% opacity black), and `.text-white-50` (50% opacity white) utilities. - Added new `.shadow-*` utilities for quickly adding `box-shadow`s. - Added ability to disable Popper's positioning in dropdowns. - Fixed longstanding issue with Chrome incorrectly rendering cards across CSS columns. - Deprecated `.text-hide`—you'll see a warning during compilation—as it's a dated and undocumented feature. - Fixed up Dashboard and Offcanvas examples across Firefox and IE. - Breadcrumbs can now use non-string values as dividers. - Updated our Theming docs to confirm you *cannot* use CSS variables in media queries (sorry folks!). Be sure to look at the [ship list](https://togithub.com/twbs/bootstrap/issues/25375) and [project board](https://togithub.com/twbs/bootstrap/projects/5) for more details on all our fixes. ### [`v4.0.0`](https://togithub.com/twbs/bootstrap/releases/tag/v4.0.0) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.0.0-beta.3...v4.0.0) Our first stable v4 release! 🎉 ##### Highlights: - Brand new examples and overhauls for existing ones. - Additional border utilities have been added and the default `border-color` for them darkened from `$gray-200` to `$gray-300`. - Pagination focus styles now match button and input focus state. - Added responsive `.order-0` classes to reset column order. - Improved examples of form validation documentation by adding tooltip examples and more. - New documentation added for using our CSS variables to the [Theming page](https://getbootstrap.com/docs/4.0/getting-started/theming/). - Improved consistent across browsers when printing. - Sass map extends and docs - New and improved print display utilities ##### Project board For more details, visit [https://github.com/twbs/bootstrap/issues/25098](https://togithub.com/twbs/bootstrap/issues/25098). ### [`v4.0.0-beta.3`](https://togithub.com/twbs/bootstrap/releases/tag/v4.0.0-beta.3) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.0.0-beta.2...v4.0.0-beta.3) ##### Breaking changes As mentioned in [our Beta 2 release](http://blog.getbootstrap.com/2017/10/19/bootstrap-4-beta-2/), we needed to make a few more breaking changes in Beta 3. We've summarized them here and in our [migration docs](https://getbootstrap.com/docs/4.0/migration/#beta-3-changes)—be sure to read them! - **Rewrote native and custom check controls.** Both browser default and custom checkboxes and radios now have simpler markup after removing the `` from the ``. Now, all checkboxes and radios have a parent `

` and sibling `` and `` pair. This is essential for form validation and disabled inputs because we can use the input's state to style the label. In addition, custom checkbox and radio elements no longer have a `.custom-control-indicator`. This is generated from the new `.custom-control-label`. - **Input groups were rewritten** with specific `.input-group-{prepend|append}` classes. The new approach allows us to support validation styles and messages within input groups, while also adding support for custom selects, custom file inputs, and multiple `.form-control`s. - **Responsive tables are once again parent classes** to avoid accessiblity issues with changing a ``'s `display`. - **Deleted the `.col-form-legend` class**, consolidating it's styles into the `.col-form-label` class. Read the [Migration page](https://getbootstrap.com/docs/4.0/migration/#beta-3-changes) for further details. ##### More highlights In addition to the breaking changes, we've addressed a few more general issues that may impact your project. - Restored `cursor: pointer` to non-disabled links, buttons, `.close`, navbar toggler, and pagination links. - Added a new vertically centered modal option with `.modal-dialog-centered`. - Added new dropleft and dropright variants for dropdowns in [#23860](https://togithub.com/twbs/bootstrap/issues/23860). - Our npm package no longer includes any files other than our source and dist JavaScript and CSS files. If you previously relied on our running our scripts via the `node_modules` folder, you'll need to update your build tools. - Print styles have moved to bottom of the import stack to properly override styles. For more details on this release's changes, take a look at the [Beta 3 ship list issue](https://togithub.com/twbs/bootstrap/issues/24439), as well as the [Beta 3 project](https://togithub.com/twbs/bootstrap/projects/10). ### [`v4.0.0-beta.2`](https://togithub.com/twbs/bootstrap/releases/tag/v4.0.0-beta.2) [Compare Source](https://togithub.com/twbs/bootstrap/compare/v4.0.0-beta...v4.0.0-beta.2) Beta 2 is here! [Read the full ship list for details](https://togithub.com/twbs/bootstrap/issues/23278) on what issues were closed and PRs merged. *** ##### Highlights - Improved Sass map customization with [#23260](https://togithub.com/twbs/bootstrap/issues/23260). With this change, it's now possible to override specific key value pairs instead of resetting the entire map, ideal for color scheme customization. - Restored grid `.offset-` modifiers in [#23445](https://togithub.com/twbs/bootstrap/issues/23445). Originally our intent was to supplement this with our margin utilities, but we underestimated the appeal of fixed number column offsets. - Remove unnecessary `color` from `.badge`, and it's associated `$badge-color` variable, in [#23529](https://togithub.com/twbs/bootstrap/issues/23529). - Rename `grayscale` function to `gray` to avoid breaking CSS native `grayscale` filter in [#23579](https://togithub.com/twbs/bootstrap/issues/23579). - Renamed `.table-inverse`, `.thead-inverse`, and `.thead-default` to `.*-dark` and `.*-light`, matching our color schemes used elsewhere in [#23560](https://togithub.com/twbs/bootstrap/issues/23560). - Responsive tables now generate classes for each grid breakpoint, meaning we've added `.table-responsive-{sm,md,lg,xl}` to the already present `.table-responsive`. You might need to adjust your usage depending on when you want a table to resize. See [#22804](https://togithub.com/twbs/bootstrap/issues/22804). - Include two new dist files which contain Popper.js inside `bootstrap.bundle.js` and `bootstrap.bundle.min.js`. See [#23735](https://togithub.com/twbs/bootstrap/issues/23735). - Dropped support for Bower as they've deprecated the package manager. See [#23568](https://togithub.com/twbs/bootstrap/issues/23568). - Switched breadcrumbs from `float` to flexbox in [#23683](https://togithub.com/twbs/bootstrap/issues/23683). - Added new CSS variables in [#23761](https://togithub.com/twbs/bootstrap/issues/23761). - Switched to Stylelint in [#23572](https://togithub.com/twbs/bootstrap/issues/23572). - New Theming page in the docs from [#23611](https://togithub.com/twbs/bootstrap/issues/23611) - [#23943](https://togithub.com/twbs/bootstrap/issues/23943): Changed the `color-yiq` from a mixin that included the `color` property to a function that returns a value, allowing you to use it for any CSS property. For example, instead of `color-yiq(#000)`, you'd write `color: color-yiq(#000);`. - New and improved theming in [#24429](https://togithub.com/twbs/bootstrap/issues/24429).

[ ] If you want to rebase/retry this PR, check this box

dev-mend-for-github-com[bot] commented 11 months ago

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

any of the package files in this branch needs updating, or
the branch becomes conflicted, or
you click the rebase/retry checkbox if found above, or
you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

DEV-REPO-URIEL / AsafFindingBugs

Update dependency bootstrap to v4.3.1 #14

Release Notes

⚠ Artifact update problem

File name: package-lock.json