Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump @uswds/uswds from 3.8.0 to 3.8.1 #3846

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 3, 2024

Bumps @uswds/uswds from 3.8.0 to 3.8.1.

Release notes

Sourced from @​uswds/uswds's releases.

USWDS 3.8.1

What's new in USWDS 3.8.1

Bug fixes

Package A11Y Breaking Markup change Description
usa-button-group Improved styles for nested button groups. Now, nested button groups should match the height of their parents. (#5885)
usa-footer Restored the usa-layout-grid dependency in the footer package and removed layout grid styles from the footer stylesheet. This update prevents visual regressions in footer and other components with layout grid utility classes in their markup. (#5930)
usa-identifier Yes Fixed a bug that added the English word "An" to Spanish variants of the identifier component. This was accidentally added to our component preview templates because of a data error. (#5857)
usa-in-page-navigation Updated an outdated reference to the data-header-selector attribute in an in-page navigation JavaScript error message. The error message now correctly references the data-heading-elements attribute. (#5856)
usa-input-mask Fixed a bug that caused input mask to break when it is not a direct child of a form. Nested input masks will now initialize and work properly. Thanks @​chrislarrycarl! (#5518)
usa-tooltip Yes Updated the behavior of the tooltip component to allow users to hover over tooltip content. This allows the component to meet the "hoverable" standard outlined in WCAG 1.4.13. (#5909)
usa-tooltip Yes Updated tooltip component behavior to close active tooltips when the escape key is pressed. This allows the component to meet the "dismissible" standard outlined in WCAG 1.4.13. (#5919)
usa-validation Yes Fixed a bug that caused non-interactive checklist items in the validation component to receive focus. Now, only the interactive input will receive focus. (#5835)
uswds-utilities Updated the code comments on utility Sass partials. These comments now reflect the correct utility class names and values. Thanks @​aduth! (#5859)

Dependencies and security

Dependency name Previous version New version
@​18f/identity-stylelint-config 2.0.0 4.0.0
@​babel/core 7.23.6 7.24.5
@​babel/preset-env 7.23.6 7.24.5
@​types/node 20.10.4 20.12.11
autoprefixer 10.4.16 10.4.19
axe-core 4.8.2 4.9.1
eslint 8.55.0 8.56.0
eslint-plugin-import 2.29.0 2.29.1
html-webpack-plugin 5.5.4 5.6.0
mocha 10.2.0 10.4.0
postcss 8.4.32 8.4.38
postcss-discard-comments 6.0.0 6.0.2
postcss-preset-env 9.3.0 9.5.11
prettier 2.8.8 3.2.5
sass 1.69.5 1.77.0
sass-embedded 1.69.5 1.77.0
snyk 1.1262.0 1.1291.0
stylelint 15.11.0 16.5.0
svgo 3.1.0 3.3.2
typescript 5.3.3 5.4.5
webpack 5.89.0 5.91.0

Thanks @​anselmbradford for the dependency updates!

0 vulnerabilities in regular dependencies (dependencies for USWDS projects installed with npm install @uswds/uswds) 13 moderate, 28 high vulnerabilities in devDependencies (development dependencies).

Release TGZ SHA-256 hash: a86fa133b842ce28d1eed2226216c478debf31bf6c16ffcd96fecf061fdf4583

Commits
  • 967d5b4 Merge pull request #5944 from uswds/release-3.8.1
  • 4b4bc6c Create uswds-3.8.1-zip-hash.txt
  • dbf81ce 3.8.1
  • 06e5fc3 Merge pull request #5943 from uswds/dw-notifications-3.8.1
  • 7e0387b Use content instead of markup
  • fe40e54 Add identifier notification
  • 6d1471e Merge pull request #5941 from uswds/cm-node-flush-cache-may-24
  • 78abe25 Flush cache and rebuild package-lock.json
  • 2f73c46 Merge pull request #5924 from uswds/cm-POAM-may-2024
  • 6e292cf Generate package lock
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [@uswds/uswds](https://github.com/uswds/uswds) from 3.8.0 to 3.8.1.
- [Release notes](https://github.com/uswds/uswds/releases)
- [Commits](uswds/uswds@v3.8.0...v3.8.1)

---
updated-dependencies:
- dependency-name: "@uswds/uswds"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner June 3, 2024 09:05
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 3, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 12, 2024

Superseded by #4051.

@dependabot dependabot bot closed this Aug 12, 2024
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/uswds/uswds-3.8.1 branch August 12, 2024 09:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants