Changelog
*Sourced from [clean-css's changelog](https://github.com/jakubpawlowicz/clean-css/blob/master/History.md).*
> [4.1.11 / 2018-03-06](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.10...v4.1.11)
> ==================
>
> * Backports fixes to ReDOS vulnerabilities in validator code.
>
> [4.1.10 / 2018-03-05](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.9...v4.1.10)
> ==================
>
> * Fixed issue [#988](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/988) - edge case in dropping default animation-duration.
> * Fixed issue [#989](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/989) - edge case in removing unused at rules.
> * Fixed issue [#1001](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1001) - corrupted tokenizer state.
> * Fixed issue [#1006](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1006) - edge case in handling invalid source maps.
> * Fixed issue [#1008](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1008) - edge case in breaking up `font` shorthand.
>
> [4.1.9 / 2017-09-19](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.8...v4.1.9)
> ==================
>
> * Fixed issue [#971](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/971) - edge case in removing unused at rules.
>
> [4.1.8 / 2017-09-02](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.7...v4.1.8)
> ==================
>
> * Fixed issue [#959](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/959) - regression in shortening long hex values.
> * Fixed issue [#960](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/960) - better explanation of `efficiency` stat.
> * Fixed issue [#965](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/965) - edge case in parsing comment endings.
> * Fixed issue [#966](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/966) - remote `@import`s referenced from local ones.
>
> [4.1.7 / 2017-07-14](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.6...v4.1.7)
> ==================
>
> * Fixed issue [#957](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/957) - `0%` minification of `width` property.
>
> [4.1.6 / 2017-07-08](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.5...v4.1.6)
> ==================
>
> * Fixed issue [#887](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/887) - edge case in serializing comments.
> * Fixed issue [#953](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/953) - beautify breaks attribute selectors.
>
> [4.1.5 / 2017-06-29](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.4...v4.1.5)
> ==================
>
> * Fixed issue [#945](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/945) - hex RGBA colors in IE filters.
> * Fixed issue [#952](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/952) - parsing `@page` according to CSS3 spec.
>
> [4.1.4 / 2017-06-14](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.3...v4.1.4)
> ==================
>
> * Fixed issue [#950](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/950) - bug in removing unused `@font-face` rules.
>
> [4.1.3 / 2017-05-18](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.2...v4.1.3)
> ... (truncated)
Commits
- [`7812d59`](https://github.com/jakubpawlowicz/clean-css/commit/7812d591d51543c5a71de9538ef6bab87dbcc8d8) Version 4.1.11.
- [`0440b4a`](https://github.com/jakubpawlowicz/clean-css/commit/0440b4acee9d84624dfb66da2956a94ebcf33519) Fixes ReDOS vulnerabilities.
- [`c601ebd`](https://github.com/jakubpawlowicz/clean-css/commit/c601ebd71da6320268058087ed049ab3b13aa068) Version 4.1.10.
- [`9e0a38e`](https://github.com/jakubpawlowicz/clean-css/commit/9e0a38ea3619c742403a33a8963ed2b33d5f41e6) Fixes [#1006](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1006) - handling invalid input source maps.
- [`913d72c`](https://github.com/jakubpawlowicz/clean-css/commit/913d72c4a23a99a8e2de0712bc9fd589c06588eb) Fixes [#1008](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1008) - edge case in breaking up `font`.
- [`bedd8a9`](https://github.com/jakubpawlowicz/clean-css/commit/bedd8a9abfa7f3d4432a49870b8f27440aa2f197) Adds [@abarre](https://github.com/abarre) fix to [#1001](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1001) to release notes.
- [`e944a2b`](https://github.com/jakubpawlowicz/clean-css/commit/e944a2bb10ecfa9e4a1e4562c8bcbc75ef410f5d) [#1001](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1001) Fix corrupted state of tokenizer ([#1010](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1010))
- [`8be4084`](https://github.com/jakubpawlowicz/clean-css/commit/8be408426a80443f79570506e4334641a2d540bf) Fixes [#989](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/989) - edge case in removing unused at-rules.
- [`21a5df0`](https://github.com/jakubpawlowicz/clean-css/commit/21a5df0496f4c721f2cb14cf5f42b499312efff4) Fixes [#988](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/988) - edge case in dropping `animation-duration`.
- [`5f6cbc6`](https://github.com/jakubpawlowicz/clean-css/commit/5f6cbc60f355f84f8f3f99786169d70164e5e3f7) Version 4.1.9.
- Additional commits viewable in [compare view](https://github.com/jakubpawlowicz/clean-css/compare/v4.0.12...v4.1.11)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/jescalan/accord/network/alerts).
Coverage remained the same at 76.258% when pulling 7396a4715989d83e8c14d5f9c04048fdebd1ad15 on dependabot/npm_and_yarn/clean-css-4.1.11 into 0cf5db10f6cc0a863a56c1ef4c2937cabb8966cd on master.
Bumps clean-css from 4.0.12 to 4.1.11.
Changelog
*Sourced from [clean-css's changelog](https://github.com/jakubpawlowicz/clean-css/blob/master/History.md).* > [4.1.11 / 2018-03-06](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.10...v4.1.11) > ================== > > * Backports fixes to ReDOS vulnerabilities in validator code. > > [4.1.10 / 2018-03-05](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.9...v4.1.10) > ================== > > * Fixed issue [#988](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/988) - edge case in dropping default animation-duration. > * Fixed issue [#989](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/989) - edge case in removing unused at rules. > * Fixed issue [#1001](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1001) - corrupted tokenizer state. > * Fixed issue [#1006](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1006) - edge case in handling invalid source maps. > * Fixed issue [#1008](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1008) - edge case in breaking up `font` shorthand. > > [4.1.9 / 2017-09-19](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.8...v4.1.9) > ================== > > * Fixed issue [#971](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/971) - edge case in removing unused at rules. > > [4.1.8 / 2017-09-02](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.7...v4.1.8) > ================== > > * Fixed issue [#959](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/959) - regression in shortening long hex values. > * Fixed issue [#960](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/960) - better explanation of `efficiency` stat. > * Fixed issue [#965](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/965) - edge case in parsing comment endings. > * Fixed issue [#966](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/966) - remote `@import`s referenced from local ones. > > [4.1.7 / 2017-07-14](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.6...v4.1.7) > ================== > > * Fixed issue [#957](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/957) - `0%` minification of `width` property. > > [4.1.6 / 2017-07-08](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.5...v4.1.6) > ================== > > * Fixed issue [#887](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/887) - edge case in serializing comments. > * Fixed issue [#953](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/953) - beautify breaks attribute selectors. > > [4.1.5 / 2017-06-29](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.4...v4.1.5) > ================== > > * Fixed issue [#945](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/945) - hex RGBA colors in IE filters. > * Fixed issue [#952](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/952) - parsing `@page` according to CSS3 spec. > > [4.1.4 / 2017-06-14](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.3...v4.1.4) > ================== > > * Fixed issue [#950](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/950) - bug in removing unused `@font-face` rules. > > [4.1.3 / 2017-05-18](https://github.com/jakubpawlowicz/clean-css/compare/v4.1.2...v4.1.3) > ... (truncated)Commits
- [`7812d59`](https://github.com/jakubpawlowicz/clean-css/commit/7812d591d51543c5a71de9538ef6bab87dbcc8d8) Version 4.1.11. - [`0440b4a`](https://github.com/jakubpawlowicz/clean-css/commit/0440b4acee9d84624dfb66da2956a94ebcf33519) Fixes ReDOS vulnerabilities. - [`c601ebd`](https://github.com/jakubpawlowicz/clean-css/commit/c601ebd71da6320268058087ed049ab3b13aa068) Version 4.1.10. - [`9e0a38e`](https://github.com/jakubpawlowicz/clean-css/commit/9e0a38ea3619c742403a33a8963ed2b33d5f41e6) Fixes [#1006](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1006) - handling invalid input source maps. - [`913d72c`](https://github.com/jakubpawlowicz/clean-css/commit/913d72c4a23a99a8e2de0712bc9fd589c06588eb) Fixes [#1008](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1008) - edge case in breaking up `font`. - [`bedd8a9`](https://github.com/jakubpawlowicz/clean-css/commit/bedd8a9abfa7f3d4432a49870b8f27440aa2f197) Adds [@abarre](https://github.com/abarre) fix to [#1001](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1001) to release notes. - [`e944a2b`](https://github.com/jakubpawlowicz/clean-css/commit/e944a2bb10ecfa9e4a1e4562c8bcbc75ef410f5d) [#1001](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1001) Fix corrupted state of tokenizer ([#1010](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/1010)) - [`8be4084`](https://github.com/jakubpawlowicz/clean-css/commit/8be408426a80443f79570506e4334641a2d540bf) Fixes [#989](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/989) - edge case in removing unused at-rules. - [`21a5df0`](https://github.com/jakubpawlowicz/clean-css/commit/21a5df0496f4c721f2cb14cf5f42b499312efff4) Fixes [#988](https://github-redirect.dependabot.com/jakubpawlowicz/clean-css/issues/988) - edge case in dropping `animation-duration`. - [`5f6cbc6`](https://github.com/jakubpawlowicz/clean-css/commit/5f6cbc60f355f84f8f3f99786169d70164e5e3f7) Version 4.1.9. - Additional commits viewable in [compare view](https://github.com/jakubpawlowicz/clean-css/compare/v4.0.12...v4.1.11)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/jescalan/accord/network/alerts).