search

heddendorp / section-app-client

Frontend of the ESN section app
https://tumi.esn.world
38 stars 16 forks source link

chore(deps): bump @angular/material-luxon-adapter from 15.2.7 to 16.1.2 #805

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps @angular/material-luxon-adapter from 15.2.7 to 16.1.2.

Release notes

Sourced from @​angular/material-luxon-adapter's releases.

v16.1.2

16.1.2 "metal-spoon" (2023-06-23)

material

Commit Description
fix - 378240a47e slider: fix voiceover on ios (#27302)
fix - bfaa20f875 stepper: allow child animations to run (#27338)

cdk

Commit Description
fix - ef1ced9873 a11y: don't emit blurred events on the server (#27315)

v16.1.1

16.1.1 "lace-enigma" (2023-06-14)

v16.1.0

16.1.0 "epoxy-proxy" (2023-06-13)

material-experimental

Commit Description
feat - aec23ac348 theming: add first part of token-based theming API (#27000)

material

Commit Description
feat - 3703cc912c select: add input to control the panel width (#27188)
feat - 9aee2ee77f tabs: synchronize ink bar animation with tab (#27056)
feat - 0028c6833f tooltip: add isDisabled method to harness (#27038)
fix - 0a58155814 form-field: ensure prefix and suffix are on top of other content (#27050)
fix - 764a68f980 form-field: ensure prefix and suffix are on top of other content (#27050)
fix - cda36e9a7a form-field: make notch sizing more reliable (#26028)
fix - 57adfe4fbf select: incorrect position if initialized late (#27198)
fix - bb6f61b874 select: provide horizontal fallback positions (#27267)
fix - feaaab9dc9 slider: fix cd for sliders w/ form controls (#27250)
fix - 1cb210bf32 stepper: two-way binding for selectedIndex (#27232)
fix - 7400746646 tabs: prevent default keyboard actions on disabled links (#27274)
fix - 44b57a5b26 tooltip: change tooltip to use MDC's token API

multiple

Commit Description
fix - 33a9543f61 fix VoiceOver confused by Select/Autocomplete's ARIA semantics (#26861)

v16.1.0-rc.0

16.1.0-rc.0 "yarn-oxe" (2023-06-08)

material

Commit Description

... (truncated)

Changelog

Sourced from @​angular/material-luxon-adapter's changelog.

16.1.2 "metal-spoon" (2023-06-23)

cdk

Commit Type Description
ef1ced9873 fix a11y: don't emit blurred events on the server (#27315)

material

Commit Type Description
378240a47e fix slider: fix voiceover on ios (#27302)
bfaa20f875 fix stepper: allow child animations to run (#27338)

16.1.1 "lace-enigma" (2023-06-14)

16.2.0-next.0 "syrup-stampede" (2023-06-13)

material-experimental

Commit Type Description
227a741c65 feat theming: Introduce a facade layer between user-facing customizable keys and actual MDC token names (#27219)

16.1.0 "epoxy-proxy" (2023-06-13)

material

Commit Type Description
3703cc912c feat select: add input to control the panel width (#27188)
9aee2ee77f feat tabs: synchronize ink bar animation with tab (#27056)
0028c6833f feat tooltip: add isDisabled method to harness (#27038)
0a58155814 fix form-field: ensure prefix and suffix are on top of other content (#27050)
764a68f980 fix form-field: ensure prefix and suffix are on top of other content (#27050)
cda36e9a7a fix form-field: make notch sizing more reliable (#26028)
57adfe4fbf fix select: incorrect position if initialized late (#27198)
bb6f61b874 fix select: provide horizontal fallback positions (#27267)
feaaab9dc9 fix slider: fix cd for sliders w/ form controls (#27250)
1cb210bf32 fix stepper: two-way binding for selectedIndex (#27232)
7400746646 fix tabs: prevent default keyboard actions on disabled links (#27274)
44b57a5b26 fix tooltip: change tooltip to use MDC's token API

material-experimental

Commit Type Description
aec23ac348 feat theming: add first part of token-based theming API (#27000)

multiple

| Commit | Type | Description |

... (truncated)

Commits
  • 0becfe8 release: cut the v16.1.2 release
  • a8033ad test(material/dialog): add tokens test (#27343)
  • bfaa20f fix(material/stepper): allow child animations to run (#27338)
  • 67662f1 refactor(material/paginator): switch to tokens API (#27325)
  • 0f27910 refactor(material/select): rename some tokens for more clarity (#27323)
  • 8a14022 docs(material/theming): add missing theme variable to theming guide docs (#27...
  • 23143cd test(cdk/testing): attempt to deflake webdriver tests (#27319)
  • a0880f8 build: fix out of sync file (#27320)
  • 9f8fb3f refactor(material/select): switch to tokens API (#27310)
  • 378240a fix(material/slider): fix voiceover on ios (#27302)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
socket-security[bot] commented 1 year ago

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Issue Package Version Note Source
Network access @angular/common 16.1.2 legacy-app/package.json via @angular/material-luxon-adapter@16.1.2

Next steps

What is network access?

This module accesses the network.

Packages should remove all network access that is functionally unnecessary. Consumers should audit network access to ensure legitimate use.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@* or ignore all packages with @SocketSecurity ignore-all

  • @SocketSecurity ignore @angular/common@16.1.2
socket-security[bot] commented 1 year ago

New and updated dependency changes detected. Learn more about Socket for GitHub ↗︎

Packages Version New capabilities Transitives^1 Size Publisher
@angular/material-luxon-adapter ⬆️ 15.2.9...16.1.2 eval, network +7/-0 64.6 MB google-wombot
dependabot[bot] commented 1 year ago

Superseded by #807.