Updates the requirements on markdown-it to permit the latest version.
Changelog
*Sourced from [markdown-it's changelog](https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md).*
> ## [10.0.0] - 2019-09-11
> ### Security
> - Fix quadratic parse time for some combinations of pairs, [#583](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/583). Algorithm is
> now similar to one in reference implementation.
>
> ### Changed
> - Minor internal structs change, to make pairs parse more effective (cost is
> linear now). If you use external "pairs" extensions, you need sync those with
> "official ones". Without update, old code will work, but can cause invalid
> result in rare case. This is the only reason of major version bump. With high probability you don't need to change your code, only update version dependency.
> - Updated changelog format.
> - Deps bump.
>
>
> ## [9.1.0] - 2019-08-11
> ### Changed
> - Remove extra characters from line break check. Leave only 0x0A & 0x0D, as in
> CommonMark spec, [#581](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/581).
>
>
> ## [9.0.1] - 2019-07-12
> ### Fixed
> - Fix possible corruption of open/close tag levels, [#466](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/466)
>
>
> ## [9.0.0] - 2019-07-09
> ### Changed
> - Updated CM spec compatibility to 0.29.
> - Update Travis-CI node version to actual (8 & latest).
> - Deps bump.
>
>
> ## [8.4.2] - 2018-02-15
> ### Fixed
> - Fix `--no-html` CLI option, [#476](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/476).
>
>
> ## [8.4.1] - 2018-02-15
> ### Fixed
> - Fix smartquotes around softbreaks, [#430](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/430).
>
>
> ## [8.4.0] - 2017-08-24
> ### Changed
> - Updated CM spec compatibility to 0.28.
>
>
> ## [8.3.2] - 2017-08-03
> ### Fixed
> - Fix blockquote termination inside lists, [#386](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/386).
> ... (truncated)
Commits
- [`b5d7ea5`](https://github.com/markdown-it/markdown-it/commit/b5d7ea5e8a70563196f8813ec5030d7b6960ea95) 10.0.0 released
- [`26eacad`](https://github.com/markdown-it/markdown-it/commit/26eacad9ab955b23b4a0b77f812dfe0976128c92) Browser files rebuild
- [`3d24bda`](https://github.com/markdown-it/markdown-it/commit/3d24bda4045f8166ae1932a0be38fbf8b4ba7d19) Deps bump
- [`33dfd12`](https://github.com/markdown-it/markdown-it/commit/33dfd129dd1358612f5f5c893e3075680b87f305) Changelog format update
- [`07a62c6`](https://github.com/markdown-it/markdown-it/commit/07a62c6c751455da95a4ec9dfad2576b9dcd766a) Move nested delimiter info to opening token instead of inline state
- [`3c67c8f`](https://github.com/markdown-it/markdown-it/commit/3c67c8f1c8878ca630ad2f5866b7fb2708c33bac) Add funding info
- [`9e5015f`](https://github.com/markdown-it/markdown-it/commit/9e5015f8f759580bbdd7412db2667ec8a72c71f7) 9.1.0 released
- [`5093920`](https://github.com/markdown-it/markdown-it/commit/5093920d5cb81643ec91cb6b9b031e88879e595b) Browser files rebuild
- [`39a35f4`](https://github.com/markdown-it/markdown-it/commit/39a35f478f1300425e103fb6b3459b44ec1de739) Remove extra chars from line breaks check (match CM spec)
- [`faecae0`](https://github.com/markdown-it/markdown-it/commit/faecae0ba706f495eb6b559bc9632f199a6be84f) Match CommonMark spec exactly
- Additional commits viewable in [compare view](https://github.com/markdown-it/markdown-it/compare/9.0.1...10.0.0)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
- `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme
Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com):
- Update frequency (including time of day and day of week)
- Pull request limits (per update run and/or open at any time)
- Automerge options (never/patch/minor, and dev/runtime dependencies)
- Out-of-range updates (receive only lockfile updates, if desired)
- Security updates (receive only security updates, if desired)
Finally, you can contact us by mentioning @dependabot.
Updates the requirements on markdown-it to permit the latest version.
Changelog
*Sourced from [markdown-it's changelog](https://github.com/markdown-it/markdown-it/blob/master/CHANGELOG.md).* > ## [10.0.0] - 2019-09-11 > ### Security > - Fix quadratic parse time for some combinations of pairs, [#583](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/583). Algorithm is > now similar to one in reference implementation. > > ### Changed > - Minor internal structs change, to make pairs parse more effective (cost is > linear now). If you use external "pairs" extensions, you need sync those with > "official ones". Without update, old code will work, but can cause invalid > result in rare case. This is the only reason of major version bump. With high probability you don't need to change your code, only update version dependency. > - Updated changelog format. > - Deps bump. > > > ## [9.1.0] - 2019-08-11 > ### Changed > - Remove extra characters from line break check. Leave only 0x0A & 0x0D, as in > CommonMark spec, [#581](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/581). > > > ## [9.0.1] - 2019-07-12 > ### Fixed > - Fix possible corruption of open/close tag levels, [#466](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/466) > > > ## [9.0.0] - 2019-07-09 > ### Changed > - Updated CM spec compatibility to 0.29. > - Update Travis-CI node version to actual (8 & latest). > - Deps bump. > > > ## [8.4.2] - 2018-02-15 > ### Fixed > - Fix `--no-html` CLI option, [#476](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/476). > > > ## [8.4.1] - 2018-02-15 > ### Fixed > - Fix smartquotes around softbreaks, [#430](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/430). > > > ## [8.4.0] - 2017-08-24 > ### Changed > - Updated CM spec compatibility to 0.28. > > > ## [8.3.2] - 2017-08-03 > ### Fixed > - Fix blockquote termination inside lists, [#386](https://github-redirect.dependabot.com/markdown-it/markdown-it/issues/386). > ... (truncated)Commits
- [`b5d7ea5`](https://github.com/markdown-it/markdown-it/commit/b5d7ea5e8a70563196f8813ec5030d7b6960ea95) 10.0.0 released - [`26eacad`](https://github.com/markdown-it/markdown-it/commit/26eacad9ab955b23b4a0b77f812dfe0976128c92) Browser files rebuild - [`3d24bda`](https://github.com/markdown-it/markdown-it/commit/3d24bda4045f8166ae1932a0be38fbf8b4ba7d19) Deps bump - [`33dfd12`](https://github.com/markdown-it/markdown-it/commit/33dfd129dd1358612f5f5c893e3075680b87f305) Changelog format update - [`07a62c6`](https://github.com/markdown-it/markdown-it/commit/07a62c6c751455da95a4ec9dfad2576b9dcd766a) Move nested delimiter info to opening token instead of inline state - [`3c67c8f`](https://github.com/markdown-it/markdown-it/commit/3c67c8f1c8878ca630ad2f5866b7fb2708c33bac) Add funding info - [`9e5015f`](https://github.com/markdown-it/markdown-it/commit/9e5015f8f759580bbdd7412db2667ec8a72c71f7) 9.1.0 released - [`5093920`](https://github.com/markdown-it/markdown-it/commit/5093920d5cb81643ec91cb6b9b031e88879e595b) Browser files rebuild - [`39a35f4`](https://github.com/markdown-it/markdown-it/commit/39a35f478f1300425e103fb6b3459b44ec1de739) Remove extra chars from line breaks check (match CM spec) - [`faecae0`](https://github.com/markdown-it/markdown-it/commit/faecae0ba706f495eb6b559bc9632f199a6be84f) Match CommonMark spec exactly - Additional commits viewable in [compare view](https://github.com/markdown-it/markdown-it/compare/9.0.1...10.0.0)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.