Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.
4.3.6 / 2024-03-16
Add support for parsing HTML numeric entities (#645) (By Jonas Schade )
4.3.5 / 2024-02-24
code for v5 is added for experimental use
4.3.4 / 2024-01-10
fix: Don't escape entities in CDATA sections (#633) (By wackbyte)
4.3.3 / 2024-01-10
Remove unnecessary regex
4.3.2 / 2023-10-02
fix jObj.hasOwnProperty when give input is null (By Arda TANRIKULU)
4.3.1 / 2023-09-24
revert back "Fix typings for builder and parser to make return type generic" to avoid failure of existing projects. Need to decide a common approach.
ec2-metadata-service: set smithy dependency versions (#5918) (05c32e74)
empty the contents of the sdkVersions.properties file when writing to it (#5916) (56e1cdc3)
Documentation Changes
client-cloudformation: Documentation update, March 2024. Corrects some formatting. (1c3d2b4a)
New Features
clients: update command documentation examples as of 2024-03-19 (5b3c7e9b)
client-ec2: This release adds the new DescribeMacHosts API operation for getting information about EC2 Mac Dedicated Hosts. Users can now see the latest macOS versions that their underlying Apple Mac can support without needing to be updated. (b2f3261a)
client-cloudwatch-logs: Update LogSamples field in Anomaly model to be a list of LogEvent (d5823e32)
client-managedblockchain-query: Introduces a new API for Amazon Managed Blockchain Query: ListFilteredTransactionEvents. (487e1dd2)
client-finspace: Adding new attributes readWrite and onDemand to dataview models for Database Maintenance operations. (38c6f75e)
ec2-metadata-service: implement utils for ec2 metadata service (imds) (#5796) (aee792e1)
Bug Fixes
middleware-ssec: ssecMiddleware with strict base64 validation (#5875) (28dcfa35)
For list of updated packages, view updated-packages.md in assets-3.537.0.zip
v3.536.0
3.536.0(2024-03-18)
Chores
move deprecation after description in comments (#5911) (6bb7caa0)
use Jreleaser for codegen maven releases (#5910) (85ac6b4b)
client-timestream-query: Documentation updates, March 2024 (69aee05c)
New Features
clients: update client endpoints as of 2024-03-18 (e1a2dc24)
client-mediatailor: This release adds support to allow customers to show different content within a channel depending on metadata associated with the viewer. (72ad42dc)
client-rds: This release launches the ModifyIntegration API and support for data filtering for zero-ETL Integrations. (861baa75)
client-cloudformation: This release supports for a new API ListStackSetAutoDeploymentTargets, which provider auto-deployment configuration as a describable resource. Customers can now view the specific combinations of regions and OUs that are being auto-deployed. (29679ab8)
client-s3: This release makes the default option for S3 on Outposts request signing to use the SigV4A algorithm when using AWS Common Runtime (CRT). (2ddd8ec)
Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.
Commits
4ff4d29 4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)
12d4747 Prevent prototype pollution in cookie memstore (#283)
f06b72d Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/geoadmin/web-asset-swissgeol/network/alerts).
⚠️ Dependabot is rebasing this PR ⚠️
Rebasing might not happen immediately, so don't worry if this takes some time.
Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
Bumps the npm_and_yarn group with 6 updates in the / directory:
4.0.11
4.2.5
3.252.0
3.537.0
1.15.5
1.15.6
2.0.0
2.0.1
4.1.2
4.1.3
2.88.11
2.88.12
Updates
fast-xml-parser
from 4.0.11 to 4.2.5Release notes
Sourced from fast-xml-parser's releases.
Changelog
Sourced from fast-xml-parser's changelog.
... (truncated)
Commits
643816d
update package detailscc73065
Remove unused code (#587)9a880b8
Merge pull request from GHSA-gpv5-7x3g-ghjvecf6016
update package0955739
fix: security bugabfee16
update package detail39b0e05
fix security buge7728af
update funding detailc7b3cea
update package detail6511e07
fix unpaired tagUpdates
@aws-sdk/client-s3
from 3.252.0 to 3.537.0Release notes
Sourced from
@aws-sdk/client-s3
's releases.... (truncated)
Changelog
Sourced from
@aws-sdk/client-s3
's changelog.... (truncated)
Commits
75c4599
Publish v3.537.069ecf8b
Publish v3.536.06bb7caa
chore: move deprecation after description in comments (#5911)c996c48
Publish v3.535.065377c8
docs(client-s3): Documentation updates for Amazon S3.74b4812
chore(docs): move documentation before release tag (#5905)56e6715
chore(clients): allow commands to be constructed without arg if optional (#5901)96fd7dc
chore(deps): bump tslib dependency to ^2.6.2 (#5899)1d3b44b
Publish v3.534.090feb3f
Publish v3.533.0Updates
follow-redirects
from 1.15.5 to 1.15.6Commits
35a517c
Release version 1.15.6 of the npm package.c4f847f
Drop Proxy-Authorization across hosts.8526b4a
Use GitHub for disclosure.Updates
ip
from 2.0.0 to 2.0.1Commits
3b0994a
2.0.132f468f
lib: fixed CVE-2023-42282 and added unit testUpdates
tough-cookie
from 4.1.2 to 4.1.3Release notes
Sourced from tough-cookie's releases.
Commits
4ff4d29
4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)12d4747
Prevent prototype pollution in cookie memstore (#283)f06b72d
Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...Updates
@cypress/request
from 2.88.11 to 2.88.12Release notes
Sourced from
@cypress/request
's releases.Commits
0664780
fix(request): update tough-cookie dep30def80
Merge pull request #39 from cypress-io/jordanpowell88/update-pkg-version6b79405
update package versionbfbb95f
Merge pull request #32 from BreakBB/fix-cve-2023-26136a67e132
pin 18.16825485a
revert back to yarn but v 183bce354
update workflow to use npm4ceb20b
Merge branch 'master' into fix-cve-2023-26136228831e
Merge pull request #38 from cypress-io/benm/github-workflows-updatef6ee03f
chore: add in workflows for github. update workflow actionsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show