Force isEvalSupported to false. Fixes GHSA-87hq-q4gp-9wr4 (caused by GHSA-wgrm-67xf-hhpq).
v8.0.1
This version shipped an incorrect fix for a security vulnerability and thus has been deprecated.
Bug fixes
Force isEvalSupported to true. Fixes GHSA-87hq-q4gp-9wr4 (caused by GHSA-wgrm-67xf-hhpq).
v8.0.0
❗️ = breaking change
What's new?
Added support for React 19.
What's changed?
❗️ New JSX transform is now required. Most likely, you’re already using it, but if you’re not, you’ll need to enable it by following the instructions in the linked blog post.
❗️ propTypes were removed. If you’re using propTypes, we recommend migrating to TypeScript or another type-checking solution.
v7.7.3
Bug fixes
Force isEvalSupported to false. Fixes GHSA-87hq-q4gp-9wr4 (caused by GHSA-wgrm-67xf-hhpq).
v7.7.2
This version shipped an incorrect fix for a security vulnerability and thus has been deprecated.
Bug fixes
Force isEvalSupported to true. Fixes GHSA-87hq-q4gp-9wr4 (caused by GHSA-wgrm-67xf-hhpq).
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the major group with 2 updates in the / directory: eslint and react-pdf.
Updates
eslint
from 8.57.0 to 9.3.0Release notes
Sourced from eslint's releases.
... (truncated)
Changelog
Sourced from eslint's changelog.
... (truncated)
Commits
41a871c
9.3.0463a2e3
Build: changelog update for 9.3.058e2719
chore: update dependencies for v9.3.0 release (#18469)b681ecb
chore: package.json update for@eslint/js
release8db0eff
fix: Improve config error messages (#18457)ceada8c
docs: explain how to use "tsc waiting" label (#18466)b32153c
feat: addoverrides.namedExports
tofunc-style
rule (#18444)06f1d1c
chore: update dependency@humanwhocodes/retry
to ^0.3.0 (#18463)5c28d9a
fix: don't remove comments between key and value in object-shorthand (#18442)62e686c
docs: Add troubleshooting info for plugin compatibility (#18451)Updates
react-pdf
from 7.7.1 to 8.0.2Release notes
Sourced from react-pdf's releases.
Commits
1cd0391
v8.0.2671e6ea
Force isEvalSupported to falsea662cfc
v8.0.19ab31ab
Force isEvalSupported to true124694d
Remove unnecessary useEffectb720f9f
Bump merge-refs from 1.2.1 to 1.3.045ad231
v8.0.0f29e55b
Add support for React 1939aaadd
Update year in LICENSE54be407
Remove explicit React.FC type declarationDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show