Bump jsonpointer, @rjsf/bootstrap-4 and @rjsf/core

[dependabot[bot]]

Bumps jsonpointer to 5.0.1 and updates ancestor dependencies jsonpointer, @rjsf/bootstrap-4 and @rjsf/core. These dependencies need to be updated together.

Updates jsonpointer from 4.1.0 to 5.0.1

Release notes

Sourced from jsonpointer's releases.

Version 5.0.1

Changelog

• Fix incorrect typings for compile get/set methods (#58, thanks to @​haakemon)
• Fix null values throwing exception when traversing over while getting (#50, thanks to @​reckter)
• Fix tests for null and undefined assertions (https://github.com/janl/node-jsonpointer/commit/a5706e821c9b1d9d821c79ab00140c25c7cafe08)

v5.0.0

5.0.0 (2021-10-31)

Bug Fixes

• Fix prototype pollution (#51)

  • The original, non-mutated objects are now returned if any of the keys __proto__, constructor or prototype are used in a json pointer.

  // returns the unmodified input {}
  jsonpointer.set({}, '/foo/__proto__/boo', 'polluted')
  

  • When passing non-string arrays to a .set operation, an error is thrown:

  // throws `new Error('Invalid JSON pointer. Must be of type string or number.')`
  jsonpointer.set({}, [['__proto__'], ['__proto__'], 'boo'], 'polluted')
  

Commits

• 4a253c0 Adopt strictEqual changes and only return null when the get succeeded
• bad4983 Fix null values throwing exception when traversing over while getting
• a5706e8 test: Always use strictEqual to ensure null and undefined values are asserted...
• b8e1e6a fix incorrect typings for compile get/set methods
• c4de620 Merge pull request #53 from janl/release/5.0.0
• 8dbf304 feat: v5
• 84cf173 Merge pull request #52 from janl/fix/test
• f716e5c chore: more rip travis
• e2ae355 chore: remove comment
• d23693b chore: update primary branch
• Additional commits viewable in compare view

Updates @rjsf/bootstrap-4 from 2.5.1 to 5.0.0-beta.13

Updates @rjsf/core from 2.5.1 to 5.0.0-beta.13

Release notes

Sourced from @​rjsf/core's releases.

5.0.0-beta.13

@​rjsf/playground

• Fix Vite development server #3228

@​rjsf/validator-ajv8

• Fix additionalProperties validation #3213
• Report all schema errors thrown by Ajv. Previously, we would only report errors thrown for a missing meta-schema. This behavior is unchanged for @​rjsf/validator-ajv6.
• Disable Ajv strict mode by default.
• Add RJSF-specific additional properties keywords to Ajv to prevent errors from being reported in strict mode.

5.0.0-beta.12

@​rjsf/antd

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/bootstrap

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/chakra-ui

• Automatically close single-choice Select widget on selection
• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/core

• BREAKING CHANGE: ShowErrorList prop changed to support false, top or bottom; true is no longer a valid value as the default changed from true to top #634
• Added the new generic, S extends StrictRJSFSchema = RJSFSchema, for schema/rootSchema to every component that needed it.
• Fix omitExtraData with field names with dots #2643
• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110
• Changed the F = any generic to be F extends FormContextType = any to better support how formContext is defined and used, partially fixing #3072

@​rjsf/fluent-ui

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/material-ui

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/mui

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/semantic-ui

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/utils

• Beta-only potentially BREAKING CHANGE: Changed all types that directly or indirectly defined schema/rootSchema to add the generic S extends StrictRJSFSchema = RJSFSchema and use S as the type for them.
  • StrictRJSFSchema was added as the alias to JSON7Schema and RJSFSchema was modified to be StrictRJSFSchema & GenericObjectType
  • This new generic was added BEFORE the newly added F = any generic because it is assumed that more people will want to change the schema than the formContext types
  • This provides future support for the newer draft versions of the schema
• Updated the ValidatorType interface to add a new rawValidation() method for use by the playground
• Added the FormContextType alias to GenericObjectType and changing the F = any generic to be F extends FormContextType = any to better support how formContext is defined and used, partially fixing #3072

@​rjsf/validator-ajv6

• Fixed a few type casts given the new expanded definition of the RJSFSchema type change

... (truncated)

Changelog

Sourced from @​rjsf/core's changelog.

5.0.0-beta.13

@​rjsf/playground

• Fix Vite development server #3228

@​rjsf/validator-ajv8

• BREAKING CHANGE: Disable form data validation for invalid JSON Schemas. Use @​rjsf/validator-ajv6 if you need to validate against invalid schemas.
• Fix additionalProperties validation #3213
• Report all schema errors thrown by Ajv. Previously, we would only report errors thrown for a missing meta-schema. This behavior is unchanged for @​rjsf/validator-ajv6.
• Disable Ajv strict mode by default.
• Add RJSF-specific additional properties keywords to Ajv to prevent errors from being reported in strict mode.
• For JSON Schemas with $ids, use a pre-compiled Ajv validation function when available.
• No longer fail to validate inner schemas with $ids, fixing #2821.

5.0.0-beta.12

@​rjsf/antd

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/bootstrap

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/chakra-ui

• Automatically close single-choice Select widget on selection
• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/core

• BREAKING CHANGE: ShowErrorList prop changed to support false, top or bottom; true is no longer a valid value as the default changed from true to top #634
• Added the new generic, S extends StrictRJSFSchema = RJSFSchema, for schema/rootSchema to every component that needed it.
• Fix omitExtraData with field names with dots #2643
• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110
• Changed the F = any generic to be F extends FormContextType = any to better support how formContext is defined and used, partially fixing #3072

@​rjsf/fluent-ui

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/material-ui

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/mui

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/semantic-ui

• Updated the tests to use the @rjsf/validator-ajv8 fixing #3110

@​rjsf/utils

• Beta-only potentially BREAKING CHANGE: Changed all types that directly or indirectly defined schema/rootSchema to add the generic S extends StrictRJSFSchema = RJSFSchema and use S as the type for them.
  • StrictRJSFSchema was added as the alias to JSON7Schema and RJSFSchema was modified to be StrictRJSFSchema & GenericObjectType
  • This new generic was added BEFORE the newly added F = any generic because it is assumed that more people will want to change the schema than the formContext types
  • This provides future support for the newer draft versions of the schema

... (truncated)

Commits

• c06ccc2 v5.0.0-beta.13
• be1d515 5.0.0 beta 13
• 397740e Fix issues with validating schemas with "$id"s in @​rjsf/validator-ajv8 (#3232)
• 651bc02 Fixes for #3228 (playground dev crash), #3213 (Ajv8 additionalProperties vali...
• 914f0a1 Rc5.0.0 beta.12 (#3224)
• c78a1c9 partial fix: Added FormContextType and extending the F generic from it (#3220)
• 8085aab fix: Clear raw validation fix (#3219)
• 9b015ac fix: show error list playground (#3218)
• 7e88e0b feature: Support raw validation in the playground (#3217)
• 04dc047 Update package-lock.json files for validator upgrade (#3214)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/astarte-platform/astarte-dashboard/network/alerts).

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.