Closed gregswindle closed 7 years ago
No, jsdoc2md does not support Typescript or flow (without plugins), only Javascript.
Also, please remove use of safe-buffer
- it is superfluous bloat. Security is not an issue.
@75lb , I'm looking into the pipe now. I'll also remove safe-buffer
.
BTW, do you have project with test fixtures you like to use? Nevermind, found dmd/test/fixture
😳
i do have a testbed but it's a bit messy - i wrote some basic instructions on the readme: https://github.com/jsdoc2md/testbed
Thanks for the testbed
. I'm at my day job now, but I'll resume this evening (CDT). It looks like something do with the regexs, but I haven't investigated deeply, yet.
BTW, I removed, tested, and pushed safe-buffer
.
handlebars upgraded in the latest release of dmd (v3.0.7).
Description of changes
1. Update
dmd
'sdependencies
to usehandlebars@4.0.6
, which itself has updated its nested dependencies that address three reported vulnerabilities:1.1. Quoteless Attributes in Templates can lead to Content Injection
Discovered in a nested dependency:
jsdoc-to-markdown@3.0.0 --> dmd@3.0.3 --> handlebars@3.0.3
1.2. Incorrect Handling of Non-Boolean Comparisons During Minification
Discovered in a nested dependency:
jsdoc-to-markdown@3.0.0 --> dmd@3.0.3 --> handlebars@3.0.3 --> uglify-js@2.3.6
1.3. Regular Expression Denial of Service
Discovered in a nested dependency:
jsdoc-to-markdown@3.0.0 --> dmd@3.0.3 --> handlebars@3.0.3 --> uglify-js@2.3.6
2. Replace deprecated
Buffer()
withsafe-buffer^5.0.1
This addresses NSP's Remote Memory Disclosure vulnerability.
3. Run
standard -fix
Format two functions in total. Please see diffs below.
:white_check_mark:
npm test
status: passnpm test
passes on these Travis-CI builds::white_check_mark: Functional tests status: pass
So far I only have two sample docs generated by this fork of
jsdoc2md/dmd
with updatedhandlebars@4.0.6
.:book: Example API generated by
jsdoc-to-markdown
with forkedgregswindle/dmd
This API doc was generated from annotated ES6 JavaScript.:book: Typescript and react API generated with jsdoc2md This sample was based on the WebPack-generated
dist
directory fromMicrosoft/TypeScriptSamples/react-flux-babel-karma
.Pull request (PR) check-list
standard
passes (except for apparent false-negatives regarding reg-ex escape characters)Security
Test coverage I did not add tests/specs for coverage, since I only upgraded dependencies.
npm test
passes just fine, however, on Travis-CI builds for