Snyk has created this PR to upgrade uswds from 2.7.0 to 2.7.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 1 version ahead of your current version.
The recommended version was released 22 days ago, on 2020-06-17.
We listened to your feedback and made a number of improvements and upgrades to our new combo box.
Show proper focus in combo box. Hover and keyboard events transfer focus to individual options, and now the styling reflects that. (#3493)
Disabled combo boxes remain disabled after enhancement. The disabled attribute now correctly results in a disabled combo box. (#3484)
Use data attributes to set combo box placeholder and default. We now use data attributes to set the default value (data-default-value) and placeholder (data-placeholder). (#3486)
Improved combo box interactions. Allows list toggling with the toggle button, and adds a "clear input" button to start a subsequent combo box interaction. Makes a number of additional improvement to how the combo box handles changes and new selections. (#3505)
Combo box now triggers a change event on input and select change. Now we fire proper change events on the <select>. Thanks @ConnorDY! (#3487)
We fixed the punctuation on the default combo box. Now there's no more colon, consistent with other input guidance. (#3473)
The combo box scrollbar works. Now you can scroll a combo box with the scrollbar! (#3483)
Other improvements and bug fixes
Improved the reliability and cross-browser compatibility of our flexbox usage. We rebuilt how the design system outputs its flex utilities and mixins so any flex-based rules display properly and as expected in browsers from IE11 up. (#3480)
Improve display of media block. This element now uses flexbox instead of floats, so text in a media block is no longer cut occasionally cut off at the end of a line in IE11. Thanks @maya! (#3453)
Mobile menus can now be closed with the esc key in IE11. Now, the escape key will properly close mobile menus in IE11. Thanks @joncasey! (#3468)
Improved our Autoprefixer and Browserslist settings. We added not dead to our Autoprefixer settings and now use a .browserslistrc file for these options. This gets us more in line with Autoprefixer and Browserslist best practices. Thanks @ai! (#3458)
Fixed IE11 display issue in mobile nav. Now nav elements display as expected at mobile width on IE11. (#3470)
Fixed a potential Unhandled rejection Parsing error in the codebase. Thanks @hursey013! (#3497)
Fixed spacing in nested lists. Now nested lists will have proper formatting and spacing regardless of the value of $theme-global-content-styles. Thanks @jonraedeke! (#3495)
Fixed a color contrast issue in our accent-cool button. Now all our buttons have the proper AA contrast between the button background and the button text. And we've built our code to be smart enough to adjust the text color to adapt to any project's theme color definitions. (#3492)
To better provide resilience in our color contrast, we're introducing two new mixins to help provide a more resilient codebase:
For a given background-color token, each mixin checks contrast against the preferred-text-color and uses that as the text color unless it doesn't pass the contrast requirements of the WCAG-level. Then it checks fallback-text-color and uses that color unless it doesn't meet contrast requirements, in which case it returns an error.
set-text-from-bg(): Sets only the text color. set-text-and-bg(): Sets both the background color and the text color.
Dependencies and security
package
old
new
@types/node
13.9.1
13.13.12
@babel/preset-env
7.8.7
7.10.2
@frctl/fractal
1.2.1
1.3.0
@frctl/nunjucks
2.0.1
2.0.2
autoprefixer
9.7.4
9.8.0
axe-core
3.5.2
3.5.4
browserify
16.5.0
16.5.1
chrome-launcher
0.13.2
0.13.3
chrome-remote-interface
0.28.1
0.28.2
cross-spawn
7.0.1
7.0.3
eslint-config-prettier
6.10.0
6.11.0
eslint-plugin-import
2.20.1
2.21.2
gulp-cli
2.2.0
2.3.0
gulp-sass
4.0.2
4.1.0
jsdom
16.2.1
16.2.2
mocha
7.1.12
7.2.0
nyc
15.0.0
15.1.0
sass
1.26.3
1.26.8
stylelint
13.2.1
13.6.0
stylelint-scss
3.15.0
3.17.2
0 vulnerabilities in regular dependencies (dependencies for USWDS projects installed with npm install uswds)
4 low, 3 high vulnerabilities in devDependencies (development dependencies)
Read more about these components on our website, but we're excited to start releasing the first of a number of new design system components planned for 2020:
Button group: Use button groups to collect similar or related actions.
Card: Cards contain content and actions about a single subject.
Character count: Character count helps users know how much text they can enter when there is a limit on the number of characters.
Combo box: A combo box helps users select an item from a large list of options.
Improvements and bug fixes
Improved mobile experience for numeric fields. We updated our guidance and code for numeric fields to follow the lead of gov.uk's recent guidance and research. This updates those fields to use text rather than number inputs with an inputmode of numeric. (#3392)
Fixed color token errors. We made some mistakes adding the new color tokens into the system in 2.6.0. Now the values of Indigo cool 60v, Indigo cool 70v, and Indigo cool 80v fall within our grade guidance, and match both the documentation and the design assets. (#3455)
Improved styling of Skipnav component. Now the Skipnav includes proper link formatting. (#3393)
Improved display of the Here's how you know link in the gov banner. Now there's no distracting change to the length of the underline on hover. (#3427)
Assure external link icon wraps properly. Now the external link icon won't get stranded as a widow on a new line. It will break to a new line only with its link text. (#3428)
Provide a more reliable treatment for dropdown menus. Now dropdown menus won't get cut off if they come too close to the header boundary (#3438) and menus with usa-current nav elements won't display an unnecessary underline at desktop widths (#3434).
Dependencies and security
package
old
new
chrome-launcher
0.12.0
0.13.2
handlebars
4.7.3
4.7.6
mocha
7.1.0
7.1.2
0 vulnerabilities in regular dependencies (dependencies for USWDS projects installed with npm install uswds)
318 low, 2 high vulnerabilities in devDependencies (development dependencies)
Note: The devDependencies number is high because we're still having issues with npm audit fix.
Snyk has created this PR to upgrade uswds from 2.7.0 to 2.7.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Release notes
Package name: uswds
-
2.7.1 - 2020-06-17
package
old
new
@types/node
13.9.1
13.13.12
@babel/preset-env
7.8.7
7.10.2
@frctl/fractal
1.2.1
1.3.0
@frctl/nunjucks
2.0.1
2.0.2
autoprefixer
9.7.4
9.8.0
axe-core
3.5.2
3.5.4
browserify
16.5.0
16.5.1
chrome-launcher
0.13.2
0.13.3
chrome-remote-interface
0.28.1
0.28.2
cross-spawn
7.0.1
7.0.3
eslint-config-prettier
6.10.0
6.11.0
eslint-plugin-import
2.20.1
2.21.2
gulp-cli
2.2.0
2.3.0
gulp-sass
4.0.2
4.1.0
jsdom
16.2.1
16.2.2
mocha
7.1.12
7.2.0
nyc
15.0.0
15.1.0
sass
1.26.3
1.26.8
stylelint
13.2.1
13.6.0
stylelint-scss
3.15.0
3.17.2
-
2.7.0 - 2020-05-11
- Button group: Use button groups to collect similar or related actions.
- Card: Cards contain content and actions about a single subject.
- Character count: Character count helps users know how much text they can enter when there is a limit on the number of characters.
- Combo box: A combo box helps users select an item from a large list of options.
package
old
new
chrome-launcher
0.12.0
0.13.2
handlebars
4.7.3
4.7.6
mocha
7.1.0
7.1.2
from uswds GitHub release notesWhat's new in USWDS 2.7.1
Improvements to combo box
We listened to your feedback and made a number of improvements and upgrades to our new combo box.
Show proper focus in combo box. Hover and keyboard events transfer focus to individual options, and now the styling reflects that. (#3493)
Disabled combo boxes remain disabled after enhancement. The
disabledattribute now correctly results in a disabled combo box. (#3484)Use data attributes to set combo box placeholder and default. We now use data attributes to set the default value (
data-default-value) and placeholder (data-placeholder). (#3486)Improved combo box interactions. Allows list toggling with the toggle button, and adds a "clear input" button to start a subsequent combo box interaction. Makes a number of additional improvement to how the combo box handles changes and new selections. (#3505)
Combo box now triggers a change event on
inputandselectchange. Now we fire proper change events on the<select>. Thanks @ConnorDY! (#3487)We fixed the punctuation on the default combo box. Now there's no more colon, consistent with other input guidance. (#3473)
The combo box scrollbar works. Now you can scroll a combo box with the scrollbar! (#3483)
Other improvements and bug fixes
Improved the reliability and cross-browser compatibility of our flexbox usage. We rebuilt how the design system outputs its flex utilities and mixins so any flex-based rules display properly and as expected in browsers from IE11 up. (#3480)
Improve display of media block. This element now uses flexbox instead of floats, so text in a media block is no longer cut occasionally cut off at the end of a line in IE11. Thanks @maya! (#3453)
Mobile menus can now be closed with the
esckey in IE11. Now, the escape key will properly close mobile menus in IE11. Thanks @joncasey! (#3468)Improved our Autoprefixer and Browserslist settings. We added
not deadto our Autoprefixer settings and now use a.browserslistrcfile for these options. This gets us more in line with Autoprefixer and Browserslist best practices. Thanks @ai! (#3458)Fixed IE11 display issue in mobile nav. Now nav elements display as expected at mobile width on IE11. (#3470)
Fixed a potential Unhandled rejection Parsing error in the codebase. Thanks @hursey013! (#3497)
Added
role="img"to SVG images. Thanks @sslawrence521! (#3501)Fixed spacing in nested lists. Now nested lists will have proper formatting and spacing regardless of the value of
$theme-global-content-styles. Thanks @jonraedeke! (#3495)Fixed a color contrast issue in our
accent-coolbutton. Now all our buttons have the proper AA contrast between the button background and the button text. And we've built our code to be smart enough to adjust the text color to adapt to any project's theme color definitions. (#3492)To better provide resilience in our color contrast, we're introducing two new mixins to help provide a more resilient codebase:
For a given
background-colortoken, each mixin checks contrast against thepreferred-text-colorand uses that as the text color unless it doesn't pass the contrast requirements of theWCAG-level. Then it checksfallback-text-colorand uses that color unless it doesn't meet contrast requirements, in which case it returns an error.set-text-from-bg(): Sets only the text color.
set-text-and-bg(): Sets both the background color and the text color.
Dependencies and security
0vulnerabilities in regular dependencies (dependencies for USWDS projects installed withnpm install uswds)4 low, 3 highvulnerabilities in devDependencies (development dependencies)What's new in USWDS 2.7.0
New components
Read more about these components on our website, but we're excited to start releasing the first of a number of new design system components planned for 2020:
Improvements and bug fixes
Improved mobile experience for numeric fields. We updated our guidance and code for numeric fields to follow the lead of gov.uk's recent guidance and research. This updates those fields to use
textrather thannumberinputs with aninputmodeofnumeric. (#3392)Fixed color token errors. We made some mistakes adding the new color tokens into the system in
2.6.0. Now the values ofIndigo cool 60v,Indigo cool 70v, andIndigo cool 80vfall within our grade guidance, and match both the documentation and the design assets. (#3455)Improved styling of Skipnav component. Now the Skipnav includes proper link formatting. (#3393)
Improved display of the
Here's how you knowlink in the gov banner. Now there's no distracting change to the length of the underline on hover. (#3427)Assure external link icon wraps properly. Now the external link icon won't get stranded as a widow on a new line. It will break to a new line only with its link text. (#3428)
Provide a more reliable treatment for dropdown menus. Now dropdown menus won't get cut off if they come too close to the header boundary (#3438) and menus with
usa-currentnav elements won't display an unnecessary underline at desktop widths (#3434).Dependencies and security
0vulnerabilities in regular dependencies (dependencies for USWDS projects installed withnpm install uswds)318 low, 2 highvulnerabilities in devDependencies (development dependencies)Commit messages
Package name: uswds
- 1b6984f Merge pull request #3516 from uswds/release-2.7.1
- 469aadb 2.7.1
- 9ca144f Merge pull request #3515 from uswds/dw-remove-color-test
- 7a89611 Merge pull request #3512 from uswds/10x-forms/combo-box-updates
- e1215fa Use non-theme prefix for internal setting
- 8ad607b Remove $theme-test-colors from theme, as it's meant to be internal only
- 44a9e68 Merge pull request #3492 from uswds/jm-button-accent-cool-a11y
- 07cca77 Merge branch 'develop' into jm-button-accent-cool-a11y
- 36aa496 Merge pull request #3514 from uswds/dw-update-refs-2.7.1
- 67c1a03 Update package-lock.json
- 7103f74 Update and audit dependencies
- a2811d2 Update _notifications.scss
- d291209 Update refs 2.7.0 → 2.7.1
- b2b3f41 Merge pull request #3513 from uswds/10x-forms/disable-focus-outline-on-list
- 2ee3d10 Disable focus outline on drag
- 8d0e142 Merge pull request #3505 from uswds/10x-forms/3479-combobox-subsequent-selection
- 8ea296c Merge branch '10x-forms/combo-box-updates' into 10x-forms/3479-combobox-subsequent-selection
- 1653689 Merge branch 'develop' of github.com:uswds/uswds into 10x-forms/combo-box-updates
- 8112f28 Merge branch 'develop' of github.com:uswds/uswds into 10x-forms/3479-combobox-subsequent-selection
- 538838c Merge pull request #3480 from uswds/jm-test-flex
- 58332b0 Merge pull request #3511 from uswds/dw-update-fractal
- eb280ce Merge pull request #3495 from uswds/jm-global-content-styles
- e2af59b Update package-lock.json
- c5b224b Update to fractal.config file
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs