DSACMS / dedupliFHIR

Prototype for basic deduplication and aggregation of eCQM data
Creative Commons Zero v1.0 Universal
8 stars 3 forks source link

Bump @uswds/uswds from 3.9.0 to 3.10.0 in /frontend #201

Open dependabot[bot] opened 6 days ago

dependabot[bot] commented 6 days ago

Bumps @uswds/uswds from 3.9.0 to 3.10.0.

Release notes

Sourced from @​uswds/uswds's releases.

USWDS 3.10.0

What's new in USWDS 3.10.0

Features

Package A11y Breaking Markup change Description
usa-combo-box - - - Updated the order of combo box search results. The component now displays options that start with the query at the top of the list, followed by options that contain the query. This behavior more closely aligns with user expectation. (#6122)

Bug fixes

Package A11y Breaking Markup change Description
usa-checkbox - - - Removed inline style tags from indeterminate checkbox SVGs. These style tags were unnecessary and caused a conflict with Cypress automated testing. (#6162) ✏️ Teams should update the checkbox-indeterminate.svg and checkbox-indeterminate-alt.svg files in their projects.
usa-file-input - - - Fixed a bug that caused file input image previews to break when a Content Security Policy is enabled. The component now uses event listeners in place of inline JavaScript to handle error states. Thanks @​jeffpw-goog! (#5997)
usa-model - - - Fixed a bug that prevented the modal package from bundling with a custom prefix. The component no longer uses hard-coded class names in its JavaScript. Thanks @​sanason! (#6026)
usa-step-indicator Yes - Yes Removed the aria-label from the wrapper of the step indicator component. This resolves an automated testing error related to having an invalid attribute on a div element. (#6146) ✏️ Teams should remove the the aria-label from the .usa-step-indicator element in their step indicator markup.
usa-time-picker Yes - Yes Updated the time picker hint text to improve clarity. This update allows the component to meet the success criteria in WCAG 3.3.2. (#6147) ✏️ Teams should replace the words "hh:mm" in the time picker hint text with "Select a time from the dropdown. Type into the input to filter options."

Markup changes

Step indicator

To remove automated testing errors, teams should update the step indicator markup to remove the aria-label on the usa-step-indicator element:

- <div class="usa-step-indicator" aria-label="progress">
+ <div class="usa-step-indicator">

Time picker

If teams are using "hh:mm" in their time picker hint text, they should update the text to "Select a time from the dropdown. Type into the input to filter options.":

- <div class="usa-hint">hh:mm</div>
+ <div class="usa-hint">Select a time from the dropdown. Type into the input to filter options.</div>

Dependencies and security

Dependency updates

Dependency name Previous version Updated version
object-assign 4.1.1 --

Dev Dependency updates

Dependency name Previous version Updated version
@​babel/core 7.25.2 7.25.7
@​babel/preset-env 7.25.4 7.25.7

... (truncated)

Commits
  • c73e552 Merge pull request #6199 from uswds/release-3.10.0
  • e515806 Create uswds-3.10.0-zip-hash.txt
  • 6bb31b1 3.10.0
  • 91ca5a3 Regenerate package lock and run audit fix
  • 7a42f7e Merge pull request #6198 from uswds/dw-add-notifications-3.10.0
  • dd5d11e Add notifications for 3.10.0
  • 9a8041b Merge pull request #6188 from uswds/cm-readme-remove-polyfills
  • e87f19c Merge pull request #6122 from uswds/cm-combo-box-enhance-results
  • dafd2e4 Apply code comment suggestions from code review
  • c7be8c6 Run prettier
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)