⬆️ Bump striptags, hexo, hexo-deployer-git and hexo-renderer-marked

[dependabot[bot]]

Removes striptags. It's no longer used after updating ancestor dependencies striptags, hexo, hexo-deployer-git and hexo-renderer-marked. These dependencies need to be updated together.

Removes striptags

Updates hexo from 3.8.0 to 6.3.0

Release notes

Sourced from hexo's releases.

6.3.0

New Features

• feat(tag/post_link): throw on post_link error by @​xbc5 in hexojs/hexo#4938
• feat(tag/include_code): robust for url compuation of view raw by @​stevenjoezhang in hexojs/hexo#4996
• feat(paginator): allow custom class name by @​renbaoshuo in hexojs/hexo#5001
• feat(helper/toc): more flexible class name by @​renbaoshuo in hexojs/hexo#5010
• feat(helper/tagcloud): show_count option (#5047) by @​renbaoshuo in hexojs/hexo#5048
• feat(tag/code): add language_attrhexojs/hexo-util#278@​renbaoshuo in hexojs/hexo#5017
• feat(helper/is): add is_home_first_page() helper by @​renbaoshuo in hexojs/hexo#5006

Improvements

• let post_link use original post title as title attribute by @​ppwwyyxx in hexojs/hexo#4973

Fixes

• fix(hexo/index): db.json file path in debug logging on Windows by @​stevenjoezhang in hexojs/hexo#4994
• fix(tag): show source file in unformatted error message by @​curbengh in hexojs/hexo#5031
• Don't use data-uri for og:image by @​KentarouTakeda in hexojs/hexo#5053

Refactors

• refactor(helper/open_graph): use whatwg url api by @​renbaoshuo in hexojs/hexo#5007
• chore(mail_to): use native URLSearchParams by @​renbaoshuo in hexojs/hexo#5002

Test

• test: replace nyc with c8 by @​stevenjoezhang in hexojs/hexo#5040
• chore(test/extend/tag): async function (#3328) by @​renbaoshuo in hexojs/hexo#5003

CI/CD

• chore: Set permissions for GitHub actions by @​neilnaveen in hexojs/hexo#4947
• chore: delete release-drafter by @​yoshinorin in hexojs/hexo#5044
• chore: improved benchmark result in github actions by @​renbaoshuo in hexojs/hexo#5013

Dependencies

• chore(deps): bump hexo-util and warehouse by @​yoshinorin in hexojs/hexo#5028
• chore(deps): bump hexo-log from 3.0.0 to 3.2.0 by @​yoshinorin in hexojs/hexo#5054

Misc

• Update license year by @​renbaoshuo in hexojs/hexo#5041
• chore: update issue template by @​yoshinorin in hexojs/hexo#5030
• chore: update .gitignore by @​yoshinorin in hexojs/hexo#4967

New Contributors

... (truncated)

Commits

• 4d42d9d release: 6.3.0 (#5043)
• 16e189f chore(deps): bump hexo-log from 3.0.0 to 3.2.0 (#5054)
• 06a8ebb fix(#5053): exclude data-uri image for og:image (#5053)
• 6deeb8d feat(tag/code): add language_attrhexojs/hexo-util#278#5017)
• d9e5f2e feat(helper/tagcloud): show_count option (#5047) (#5048)
• d95d297 chore: delete release-drafter (#5044)
• 354f1f1 Update license year (#5041)
• e44b48c feat(tag/post_link): use original post title as title attribute (#4973)
• a2fc8c0 test: replace nyc with c8 (#5040)
• b48f095 fix(tag): show source file in unformatted error message (#5031)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by yoshinorin, a new releaser for hexo since your current version.

Updates hexo-deployer-git from 1.0.0 to 3.0.0

Release notes

Sourced from hexo-deployer-git's releases.

v3.0.0

Changes

• release: 3.0.0 @​stevenjoezhang (#198)
• Replace swig-templates with nunjucks @​stevenjoezhang (#173)

Dependencies

• chore(deps-dev): bump mocha from 7.2.0 to 8.0.1 @​dependabot-preview (#190)
• chore(deps-dev): bump eslint from 6.8.0 to 7.1.0 @​dependabot-preview (#188)
• chore(deps): bump hexo-fs from 2.0.0 to 3.0.1 @​dependabot-preview (#178)
• chore(deps): bump hexo-util from 1.9.0 to 2.1.0 @​dependabot-preview (#184)
• Bump eslint-config-hexo from 3.0.0 to 4.1.0 @​dependabot-preview (#156)
• chore(deps): bump chalk from 3.0.0 to 4.0.0 @​dependabot-preview (#176)
• chore(deps-dev): bump mocha from 6.2.3 to 7.1.2 @​dependabot-preview (#179)
• Bump nyc from 14.1.1 to 15.0.0 @​dependabot-preview (#157)

Misc

• ci: drop node 8 & add node 14 @​SukkaW (#181)
• chore: add release-drafter @​YoshinoriN (#166)

2.1.0

Feature

• Support authenticating using an access token (either the value itself or an environment variable) specified in the config. (#135)

2.0.0

Breaking change

• Requires Node 8 or above (#138)

Refactor

• Update syntax to ES6 (#141)

Housekeeping

• Update hexo-util from ^0.6.0 to ^1.0.0 (#145)

Commits

• 70e2c8f release: 3.0.0 (#198)
• a431418 chore(deps-dev): bump mocha from 7.2.0 to 8.0.1 (#190)
• d95bf33 chore(deps-dev): bump eslint from 6.8.0 to 7.1.0 (#188)
• 751b7a7 chore(deps): bump hexo-fs from 2.0.0 to 3.0.1 (#178)
• c312a15 chore(deps): bump hexo-util from 1.9.0 to 2.1.0 (#184)
• 6abb97b ci: drop node 8 & add node 14 (#181)
• d38cabd chore(deps-dev): eslint-config-hexo from 3.0.0 to 4.1.0 (#156)
• 6e84df7 chore(deps): bump chalk from 3.0.0 to 4.0.0 (#176)
• da86591 chore(deps-dev): bump mocha from 6.2.3 to 7.1.2 (#179)
• 6732e1e chore: add release-drafter (#166)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by yoshinorin, a new releaser for hexo-deployer-git since your current version.

Updates hexo-renderer-marked from 1.0.0 to 5.0.0

Release notes

Sourced from hexo-renderer-marked's releases.

5.0.0

Breaking Changes

• Support node >=12 by @​tomap in hexojs/hexo-renderer-marked#201
• Enable prependRoot by default by @​tomap in hexojs/hexo-renderer-marked#203

Refactor

• refactor: call parent class url tokenizer method by @​yoshinorin in hexojs/hexo-renderer-marked#218

Dependencies

• chore(deps): bump marked from 2.1.3 to 3.0.4 by @​dependabot in hexojs/hexo-renderer-marked#208
• chore(deps): bump marked from 3.0.8 to 4.0.1 by @​dependabot in hexojs/hexo-renderer-marked#214
• chore(deps): bump jsdom from 16.7.0 to 17.0.0 by @​dependabot in hexojs/hexo-renderer-marked#199
• chore(deps): bump jsdom from 17.0.0 to 18.0.0 by @​dependabot in hexojs/hexo-renderer-marked#212
• chore(deps): bump jsdom from 18.1.1 to 19.0.0 by @​dependabot in hexojs/hexo-renderer-marked#215
• chore(deps-dev): bump eslint from 7.32.0 to 8.0.0 by @​dependabot in hexojs/hexo-renderer-marked#211
• chore(deps-dev): bump hexo from 5.4.0 to 6.0.0 by @​dependabot in hexojs/hexo-renderer-marked#217
• chore(deps-dev): bump eslint-config-hexo from 4.2.0 to 5.0.0 by @​dependabot in hexojs/hexo-renderer-marked#219

Docs

• Explain security risk of using this plugin by @​tomap in hexojs/hexo-renderer-marked#210

Full Changelog: https://github.com/hexojs/hexo-renderer-marked/compare/v4.1.0...5.0.0

v4.1.0

New features

• Sanitize HTML with DOMPurify option (#196) @​tomap

CI/CD

• Support Node v16 & update actions (#197) @​tomap

Dependencies

• chore(deps-dev): bump mocha from 8.4.0 to 9.0.3 (#195)

Misc

• Upgrade to GitHub-native Dependabot (#188)

v4.0.0

Breaking Changes

• bump marked from 1.2.9 to 2.0.0 (#183)
  • em and strong tokenizers have been merged into one emStrong tokenizer
  • Please see marked v2.0.0 release note

... (truncated)

Commits

• 4304601 chore: bump version from 4.1.0 to 5.0.0 (#220)
• 9c48448 chore(deps): bump marked from 3.0.8 to 4.0.1 (#214)
• 20e9d00 chore(deps-dev): bump eslint-config-hexo from 4.2.0 to 5.0.0 (#219)
• 568e5e9 refactor: call parent class url tokenizer method (#218)
• 76ee3bc chore(deps-dev): bump hexo from 5.4.0 to 6.0.0 (#217)
• 4bc71b4 chore(deps): bump jsdom from 18.1.1 to 19.0.0 (#215)
• ae51afc chore(deps-dev): bump eslint from 7.32.0 to 8.0.0 (#211)
• 3bcb483 chore(deps): bump jsdom from 17.0.0 to 18.0.0 (#212)
• 36b1c14 Explain security risk of using this plugin (#210)
• 8767792 chore(deps): bump marked from 2.1.3 to 3.0.4 (#208)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by yoshinorin, a new releaser for hexo-renderer-marked since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ddzy/blog/network/alerts).