search

craftcms / spoke-and-chain

Craft CMS + Craft Commerce demo site.
https://craftcms.com/demo?kind=spokeandchain
BSD Zero Clause License
53 stars 28 forks source link

[Snyk] Upgrade tailwindcss from 2.2.0 to 2.2.4 #21

Closed snyk-bot closed 2 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to upgrade tailwindcss from 2.2.0 to 2.2.4.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-GLOBPARENT-1314294		 377/1000
Why? Recently disclosed, CVSS 5.9		 No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: tailwindcss
  • 2.2.4 - 2021-06-23

    Fixed

    • Remove postinstall script that was preventing people from installing the library (1eacfb9)
  • 2.2.3 - 2021-06-23

    Added

    • Pass extended color palette to theme closures so it can be used without installing Tailwind when using npx tailwindcss (359252c)

    Fixed

    • JIT: Explicitly error when - is used as a custom separator (#4704)
    • JIT: Don't add multiple ~ when stacking peer-* variants (#4757)
    • Remove outdated focus style fix in Preflight (#4780)
    • Enable purge if provided on the CLI (#4772)
    • JIT: Fix error when not using a config file with postcss-cli (#4773)
    • Fix issue with resolveConfig not being importable in Next.js pags (#4725)
  • 2.2.2 - 2021-06-18

    Fixed

    • JIT: Reintroduce transform, filter, and backdrop-filter classes purely to create stacking contexts to minimize the impact of the breaking change (#4700)
  • 2.2.1 - 2021-06-18

    Fixed

    • Recover from errors gracefully in CLI watch mode (#4693)
    • Fix issue with media queries not being generated properly when using PostCSS 7 (#4695)
  • 2.2.0 - 2021-06-17
    Read more
from tailwindcss GitHub release notes
Commit messages
Package name: tailwindcss
  • fb9f829 Update changelog
  • d852de6 2.2.4
  • 1eacfb9 Remove postinstall script
  • 91a441d Update fixtures
  • 041eed0 2.2.3
  • bbb6517 Update changelog
  • 384a0d0 Update changelog
  • 246539d Update changelog
  • 063eca6 Remove outdated focus style fix (#4780)
  • c0ee520 Generate plugin list file (#4725)
  • 973d53d fix: do not return the userConfigPath if its null (#4773)
  • aefd5f7 Enable purging when --purge option is supplied in CLI (#4772)
  • 0413b84 ensure `peer` variants don't include multiple ~ characters (#4757)
  • b7b2db2 Update chokidar to version 3.5.2
  • 987374f Update @ babel/core to version 7.14.6
  • d99663a Update 1.bug_report.yml
  • 7a8f7e2 Update postcss-load-config to version 3.1.0
  • 8da840f Add LICENSE for preflight
  • 359252c Pass colors to theme closures
  • 1d72dc2 Error when dash is used as custom separator (#4704)
  • ff14cb5 Update cssnano to version 5.0.6
  • b274849 add missing header
  • 9e77d74 2.2.2
  • f425661 rebuild fixtures
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs