search

ever-co / ever-demand

Ever® Demand™ - Open Commerce Platform - https://everdemand.co
https://everdemand.co
GNU Affero General Public License v3.0
1.74k stars 465 forks source link

build(deps): bump tinymce from 5.10.2 to 7.0.0 #1564

Open dependabot[bot] opened 7 months ago

dependabot[bot] commented 7 months ago

Bumps tinymce from 5.10.2 to 7.0.0.

Changelog

Sourced from tinymce's changelog.

7.0.0 - 2024-03-20

Added

  • New license_key option that must be set to gpl or a valid license key. #TINY-10681
  • New custom tooltip functionality, tooltip will be shown when hovering with a mouse or with keyboard focus. #TINY-9275
  • New sandbox_iframes_exclusions option that holds a list of URL host names to be excluded from iframe sandboxing when sandbox_iframes is set to true. #TINY-10350
  • Added 'getAllEmojis' api function to the emoticons plugin. #TINY-10572
  • Element preset support for the valid_children option and Schema.addValidChildren API. #TINY-9979
  • A new trigger property for block text pattern configurations, allowing pattern activation with either Space or Enter keys. #TINY-10324
  • onFocus callback for CustomEditor dialog component. #TINY-10596
  • icons for the import from Word, export to Word and export to PDF premium plugins. #TINY-10612
  • data is now a valid element in the Schema. #TINY-10611
  • More advanced schema config for custom elements. #TINY-9980
  • Custom tooltip for autocompleter, now visible on both mouse hover and keyboard focus, except single column cases. #TINY-9638

Improved

  • Included keyboard shortcut in custom tooltip for ToolbarButton and ToolbarToggleButton. #TINY-10487
  • Improved showing which element has focus for keyboard navigation. #TINY-9176
  • Custom tooltips will now show for items in collection which is rendered inside a dialog, on mouse hover and keyboard focus. #TINY-9637
  • Autocompleter will now work with IMEs. #TINY-10637
  • Make table ghost element better reflect height changes when resizing. #TINY-10658

Changed

  • TinyMCE is now licensed GPL Version 2 or later. #TINY-10578
  • convert_unsafe_embeds editor option is now defaulted to true. #TINY-10351
  • sandbox_iframes editor option is now defaulted to true. #TINY-10350
  • The DOMUtils.isEmpty API function has been modified to consider nodes containing only comments as empty. #TINY-10459
  • The highlight_on_focus option now defaults to true, adding a focus outline to every editor. #TINY-10574
  • Delay before the tooltip to show up, from 800ms to 300ms. #TINY-10475
  • Now tox-view__pane has position: relative instead of static. #TINY-10561
  • Update outbound link for statusbar Tiny logo #TINY-10494
  • Remove the height field from the table plugin cell dialog. The table plugin row dialog now controls the row height by setting the height on the tr element, not the td elements. #TINY-10617
  • Change table height resizing handling to remove heights from td/th elements and only apply to tr elements. #TINY-10589
  • Removed incorrect aria-placeholder attribute from editor body when placeholder option is set. #TINY-10452
  • The tooltip property for dialog's footer togglebutton is now optional. #TINY-10672
  • Changed the media_url_resolver option to use promises. #TINY-9154
  • Styles bespoke toolbar button fallback changed to Formats if Paragraph is not configured in style_formats option. #TINY-10603
  • Updated deprecation/removed console message. #TINY-10694

Removed

  • Deprecated force_hex_color option, with the default now being all colors are forced to hex format as lower case. #TINY-10436
  • Deprecated remove_trailing_brs option from DomParser. #TINY-10454
  • title attribute on buttons with visible label. #TINY-10453
  • InsertOrderedList and InsertUnorderedList commands from core, these now only exist in the lists plugin. #TINY-10644
  • closeButton from the notification API, close buttons in notifications are now required. #TINY-10646
  • The autocompleter ch configuration property has been removed. Use the trigger property instead. #TINY-8929
  • Deprecated template plugin. #TINY-10654

Fixed

  • When deleting the last row in a table, the cursor would jump to the first cell (top left), instead of moving to the next adjacent cell in some cases. #TINY-6309

... (truncated)

Commits
  • 3ac1f87 TINY-10775: Added missing changelog item (#9488)
  • d96642e TINY-10712: Tweaked changelog wording
  • c34a99d TINY-10712: Changelogs
  • 07d1157 TINY-10712: Temporary rollback of package.json
  • 2123e27 TINY-10754: Updated the license message (#9477)
  • e13c27a TINY-10639: Update Jenkins to Safari 17 and fix test failures (#9473)
  • 0decc9d TINY-10650: Add a link referencing custom view doc page to the addView API do...
  • 809fd24 TINY-10717: Fixed Esc and arrow keys and IME not starting (#9463)
  • df7b989 TINY-10732: Fallback FooterToggleButton in dialog to use spec.text to se...
  • 43769de TINY-10602: Reverted requirement for build to run lint.
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by tinymce, a new releaser for tinymce since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ever-co/ever-demand/network/alerts).
CLAassistant commented 7 months ago

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

socket-security[bot] commented 7 months ago

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher

🚮 Removed packages: npm/@babel/plugin-syntax-class-properties@7.12.13, npm/@babel/plugin-syntax-logical-assignment-operators@7.10.4, npm/@babel/plugin-syntax-numeric-separator@7.10.4, npm/@babel/plugin-syntax-object-rest-spread@7.8.3, npm/@babel/plugin-syntax-top-level-await@7.14.5, npm/@nodelib/fs.walk@1.2.8, npm/abbrev@1.1.1, npm/acorn-jsx@5.3.2, npm/aproba@2.0.0, npm/babel-plugin-istanbul@6.1.1, npm/base64-js@1.5.1, npm/binary-extensions@2.2.0, npm/bluebird@3.7.2, npm/bn.js@5.2.0, npm/brorand@1.1.0, npm/buffer-from@1.1.2, npm/camelcase@5.3.1, npm/cjs-module-lexer@1.2.2, npm/color-name@1.1.4, npm/color-support@1.1.3, npm/colorette@1.4.0, npm/commander@8.3.0, npm/console-control-strings@1.1.0, npm/constants-browserify@1.0.0, npm/convert-source-map@1.8.0, npm/cross-spawn@7.0.3, npm/dedent@0.7.0, npm/deep-is@0.1.4, npm/deepmerge@4.2.2, npm/depd@1.1.2, npm/detect-newline@3.1.0, npm/diff@4.0.2, npm/dotenv@10.0.0, npm/duplexer@0.1.2, npm/enquirer@2.3.6, npm/entities@2.2.0, npm/err-code@2.0.3, npm/error-ex@1.3.2, npm/escalade@3.1.1, npm/escape-html@1.0.3, npm/escape-string-regexp@1.0.5, npm/esprima@4.0.1, npm/esquery@1.4.0, npm/esrecurse@4.3.0, npm/estraverse@4.3.0, npm/etag@1.8.1, npm/eventemitter3@4.0.7, npm/fast-json-stable-stringify@2.1.0, npm/fast-levenshtein@2.0.6, npm/fastq@1.13.0, npm/find-root@1.1.0, npm/from@0.1.7, npm/function-bind@1.1.2, npm/functions-have-names@1.2.3, npm/gensync@1.0.0-beta.2, npm/get-caller-file@2.0.5, npm/has-symbols@1.0.3, npm/has-unicode@2.0.1, npm/has@1.0.3, npm/he@1.2.0, npm/ieee754@1.2.1, npm/indent-string@4.0.0, npm/infer-owner@1.0.4, npm/inflight@1.0.6, npm/inherits@2.0.4, npm/ipaddr.js@1.9.1, npm/is-buffer@1.1.6, npm/is-callable@1.2.7, npm/is-docker@2.2.1, npm/is-extglob@2.1.1, npm/is-glob@4.0.3, npm/is-negative-zero@2.0.3, npm/is-path-inside@3.0.3, npm/isarray@1.0.0, npm/istanbul-lib-coverage@3.2.0, npm/js-tokens@4.0.0, npm/json-parse-even-better-errors@2.3.1, npm/json-stringify-safe@5.0.1, npm/jsonparse@1.3.1, npm/lodash.clonedeep@4.5.0, npm/lodash.debounce@4.0.8, npm/lodash.merge@4.6.2, npm/lodash.once@4.1.1, npm/lodash@4.17.21, npm/make-error@1.3.6, npm/merge2@1.4.1, npm/methods@1.1.2, npm/mime@1.6.0, npm/mimic-fn@2.1.0, npm/minimalistic-assert@1.0.1, npm/ms@2.1.3, npm/nan@2.15.0, npm/normalize-path@3.0.0, npm/npm-run-path@4.0.1, npm/object-assign@4.1.1, npm/object-inspect@1.13.1, npm/object-keys@1.1.1, npm/object.assign@4.1.2, npm/once@1.4.0, npm/os-browserify@0.3.0, npm/os-tmpdir@1.0.2, npm/p-limit@3.1.0, npm/p-try@2.2.0, npm/pako@1.0.11, npm/parseurl@1.3.3, npm/path-is-absolute@1.0.1, npm/path-key@3.1.1, npm/path-parse@1.0.7, npm/path-to-regexp@0.1.7, npm/process-nextick-args@2.0.1, npm/process@0.11.10, npm/progress@2.0.3, npm/promise-inflight@1.0.1, npm/prompts@2.4.2, npm/querystring-es3@0.2.1, npm/range-parser@1.2.1, npm/react-is@16.13.1, npm/reflect-metadata@0.1.13, npm/regenerator-runtime@0.13.9, npm/require-directory@2.1.1, npm/require-from-string@2.0.2, npm/resolve-from@5.0.0, npm/retry@0.13.1, npm/rimraf@3.0.2, npm/run-parallel@1.2.0, npm/safe-buffer@5.1.2, npm/safer-buffer@2.1.2, npm/set-blocking@2.0.0, npm/setimmediate@1.0.5, npm/shell-quote@1.7.3, npm/source-map@0.7.3, npm/stack-utils@2.0.5, npm/statuses@1.5.0, npm/strip-ansi@6.0.1, npm/strip-bom@4.0.0, npm/strip-json-comments@3.1.1, npm/text-table@0.2.0, npm/through@2.3.8, npm/tiny-inflate@1.0.3, npm/type-check@0.4.0, npm/type-detect@4.0.8, npm/type-fest@0.20.2, npm/unpipe@1.0.0, npm/util-deprecate@1.0.2, npm/utils-merge@1.0.1, npm/uuid@8.3.2, npm/v8-compile-cache@2.3.0, npm/vary@1.1.2, npm/vm-browserify@1.1.2, npm/walker@1.0.8, npm/which@2.0.2, npm/xtend@4.0.2, npm/yaml@1.10.2

View full report↗︎