search

VallejosGroup / VallejosGroup.github.io

Jekyll source code for the Vallejos Group Website
https://vallejosgroup.github.io
MIT License
1 stars 2 forks source link

Bump cssnano from 6.0.2 to 6.0.4 #106

Closed dependabot[bot] closed 7 months ago

dependabot[bot] commented 7 months ago

Bumps cssnano from 6.0.2 to 6.0.4.

Release notes

Sourced from cssnano's releases.

v6.0.4

Bug Fixes

  • preserve empty @layer declarations
  • avoid crashing when encountering @layer without any braces afterwards
  • update to latest lilconfig dependency to avoid vulnerability

v6.0.3

Bug fixes

  • do not sort unknown properties

Other

  • Require latest browserslist and postcss-selector-parser
Commits
  • e2ba9a6 Publish cssnano 6.0.4
  • 4bf74ef fix(postcss-discard-empty): preserve empty layer declarations
  • 52d14d8 fix(postcss-discard-duplicates): avoid crash on empty CSS layers
  • 3757056 fix(cssnano): handle cases where AtRules might not have children
  • 7d77534 chore: update GitHub action versions
  • 311eaee fix(cssnano): update minimum lilconfig version
  • 97a4699 chore: update development dependencies
  • a914998 chore: update development deps
  • 173117a chore: remove site ESLint config since it is now handled in the main flat config
  • ced2a91 docs: update website for release 6.0.3
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 7 months ago

Superseded by #107.