Enabling this setting performs a check that the "origin" header, automatically passed by all modern browsers, matches the URL sent by each Request.
This experimental "origin" check is executed only for pages rendered on demand, and only for the requests POST, PATCH, DELETEandPUTwith one of the followingcontent-type` headers: 'application/x-www-form-urlencoded', 'multipart/form-data', 'text/plain'.
It the "origin" header doesn't match the pathname of the request, Astro will return a 403 status code and won't render the page.
Enabling this setting performs a check that the "origin" header, automatically passed by all modern browsers, matches the URL sent by each Request.
This experimental "origin" check is executed only for pages rendered on demand, and only for the requests POST, PATCH, DELETEandPUTwith one of the followingcontent-type` headers: 'application/x-www-form-urlencoded', 'multipart/form-data', 'text/plain'.
It the "origin" header doesn't match the pathname of the request, Astro will return a 403 status code and won't render the page.
To install Sass 1.75.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.
Changes
Fix a bug in which stylesheet canonicalization could be cached incorrectly when custom importers or the Node.js package importer made decisions based on the URL of the containing stylesheet.
JS API
Allow importer to be passed without url in StringOptionsWithImporter.
Fix a bug in which stylesheet canonicalization could be cached incorrectly
when custom importers or the Node.js package importer made decisions based on
the URL of the containing stylesheet.
JS API
Allow importer to be passed without url in StringOptionsWithImporter.
Commits
821b98e Don't cache canonicalize calls when containingUrl is available (#2215)
c5aff1b Make it possible to build npm with a linked language repo (#2214)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the production-dependencies group with 3 updates: @astrojs/mdx, astro and sass.
Updates
@astrojs/mdx
from 2.2.4 to 2.3.0Release notes
Sourced from
@astrojs/mdx
's releases.Changelog
Sourced from
@astrojs/mdx
's changelog.Commits
66bc104
[ci] release (#10739)683d51a
feat: upgrade the minimum Node.js maintainance LTS version (#10689)Updates
astro
from 4.5.16 to 4.6.1Release notes
Sourced from astro's releases.
... (truncated)
Changelog
Sourced from astro's changelog.
... (truncated)
Commits
3ff6b40
[ci] release (#10757)17c2bb1
Fix typo in error message for IncorrectStrategyForI18n (#10768)ed2f4aa
Performance improvement in createAstro function (#10765)ae12a7e
[ci] format742866c
Limit imports in flight forgetCollection
(#10708)789ce23
[docs] config reference link fix (#10758)c6d59b6
fix(i18n): fallback SSR (#10755)66bc104
[ci] release (#10739)d51951c
fix(cli): call path.replace only if it is a function (#10745)f1bc3de
Update utils.ts: Optimize and simplify code (#10749)Updates
sass
from 1.74.1 to 1.75.0Release notes
Sourced from sass's releases.
Changelog
Sourced from sass's changelog.
Commits
821b98e
Don't cache canonicalize calls whencontainingUrl
is available (#2215)c5aff1b
Make it possible to build npm with a linked language repo (#2214)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show