Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.
4.3.6 / 2024-03-16
Add support for parsing HTML numeric entities (#645) (By Jonas Schade )
4.3.5 / 2024-02-24
code for v5 is added for experimental use
4.3.4 / 2024-01-10
fix: Don't escape entities in CDATA sections (#633) (By wackbyte)
4.3.3 / 2024-01-10
Remove unnecessary regex
4.3.2 / 2023-10-02
fix jObj.hasOwnProperty when give input is null (By Arda TANRIKULU)
4.3.1 / 2023-09-24
revert back "Fix typings for builder and parser to make return type generic" to avoid failure of existing projects. Need to decide a common approach.
ec2-metadata-service: set smithy dependency versions (#5918) (05c32e74)
empty the contents of the sdkVersions.properties file when writing to it (#5916) (56e1cdc3)
Documentation Changes
client-cloudformation: Documentation update, March 2024. Corrects some formatting. (1c3d2b4a)
New Features
clients: update command documentation examples as of 2024-03-19 (5b3c7e9b)
client-ec2: This release adds the new DescribeMacHosts API operation for getting information about EC2 Mac Dedicated Hosts. Users can now see the latest macOS versions that their underlying Apple Mac can support without needing to be updated. (b2f3261a)
client-cloudwatch-logs: Update LogSamples field in Anomaly model to be a list of LogEvent (d5823e32)
client-managedblockchain-query: Introduces a new API for Amazon Managed Blockchain Query: ListFilteredTransactionEvents. (487e1dd2)
client-finspace: Adding new attributes readWrite and onDemand to dataview models for Database Maintenance operations. (38c6f75e)
ec2-metadata-service: implement utils for ec2 metadata service (imds) (#5796) (aee792e1)
Bug Fixes
middleware-ssec: ssecMiddleware with strict base64 validation (#5875) (28dcfa35)
For list of updated packages, view updated-packages.md in assets-3.537.0.zip
v3.536.0
3.536.0(2024-03-18)
Chores
move deprecation after description in comments (#5911) (6bb7caa0)
use Jreleaser for codegen maven releases (#5910) (85ac6b4b)
client-timestream-query: Documentation updates, March 2024 (69aee05c)
New Features
clients: update client endpoints as of 2024-03-18 (e1a2dc24)
client-mediatailor: This release adds support to allow customers to show different content within a channel depending on metadata associated with the viewer. (72ad42dc)
client-rds: This release launches the ModifyIntegration API and support for data filtering for zero-ETL Integrations. (861baa75)
client-cloudformation: This release supports for a new API ListStackSetAutoDeploymentTargets, which provider auto-deployment configuration as a describable resource. Customers can now view the specific combinations of regions and OUs that are being auto-deployed. (29679ab8)
client-s3: This release makes the default option for S3 on Outposts request signing to use the SigV4A algorithm when using AWS Common Runtime (CRT). (2ddd8ec)
Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.
Commits
4ff4d29 4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)
12d4747 Prevent prototype pollution in cookie memstore (#283)
f06b72d Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/geoadmin/web-asset-swissgeol/network/alerts).
⚠️ Dependabot is rebasing this PR ⚠️
Rebasing might not happen immediately, so don't worry if this takes some time.
Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
Bumps the npm_and_yarn group with 6 updates in the / directory:
4.0.114.2.53.252.03.537.01.15.51.15.62.0.02.0.14.1.24.1.32.88.112.88.12Updates
fast-xml-parserfrom 4.0.11 to 4.2.5Release notes
Sourced from fast-xml-parser's releases.
Changelog
Sourced from fast-xml-parser's changelog.
... (truncated)
Commits
643816dupdate package detailscc73065Remove unused code (#587)9a880b8Merge pull request from GHSA-gpv5-7x3g-ghjvecf6016update package0955739fix: security bugabfee16update package detail39b0e05fix security buge7728afupdate funding detailc7b3ceaupdate package detail6511e07fix unpaired tagUpdates
@aws-sdk/client-s3from 3.252.0 to 3.537.0Release notes
Sourced from
@aws-sdk/client-s3's releases.... (truncated)
Changelog
Sourced from
@aws-sdk/client-s3's changelog.... (truncated)
Commits
75c4599Publish v3.537.069ecf8bPublish v3.536.06bb7caachore: move deprecation after description in comments (#5911)c996c48Publish v3.535.065377c8docs(client-s3): Documentation updates for Amazon S3.74b4812chore(docs): move documentation before release tag (#5905)56e6715chore(clients): allow commands to be constructed without arg if optional (#5901)96fd7dcchore(deps): bump tslib dependency to ^2.6.2 (#5899)1d3b44bPublish v3.534.090feb3fPublish v3.533.0Updates
follow-redirectsfrom 1.15.5 to 1.15.6Commits
35a517cRelease version 1.15.6 of the npm package.c4f847fDrop Proxy-Authorization across hosts.8526b4aUse GitHub for disclosure.Updates
ipfrom 2.0.0 to 2.0.1Commits
3b0994a2.0.132f468flib: fixed CVE-2023-42282 and added unit testUpdates
tough-cookiefrom 4.1.2 to 4.1.3Release notes
Sourced from tough-cookie's releases.
Commits
4ff4d294.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)12d4747Prevent prototype pollution in cookie memstore (#283)f06b72dFix documentation for store.findCookies, missing allowSpecialUseDomain proper...Updates
@cypress/requestfrom 2.88.11 to 2.88.12Release notes
Sourced from
@cypress/request's releases.Commits
0664780fix(request): update tough-cookie dep30def80Merge pull request #39 from cypress-io/jordanpowell88/update-pkg-version6b79405update package versionbfbb95fMerge pull request #32 from BreakBB/fix-cve-2023-26136a67e132pin 18.16825485arevert back to yarn but v 183bce354update workflow to use npm4ceb20bMerge branch 'master' into fix-cve-2023-26136228831eMerge pull request #38 from cypress-io/benm/github-workflows-updatef6ee03fchore: add in workflows for github. update workflow actionsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show