René's URL Explorer Experiment

Title: Bump jspdf from 3.0.3 to 4.0.0 by dependabot[bot] · Pull Request #63 · codinit-dev/codinit-dev · GitHub

Open Graph Title: Bump jspdf from 3.0.3 to 4.0.0 by dependabot[bot] · Pull Request #63 · codinit-dev/codinit-dev

X Title: Bump jspdf from 3.0.3 to 4.0.0 by dependabot[bot] · Pull Request #63 · codinit-dev/codinit-dev

Description: Bumps jspdf from 3.0.3 to 4.0.0. Release notes Sourced from jspdf's releases. v4.0.0 This release fixes a critical path traversal/local file inclusion security vulnerability in the jsPDF Node.js build. File system access is now restricted by default and can be enabled by either using node's --permission flag or the new jsPDF.allowFsRead property. There are no other breaking changes. v3.0.4 This release includes a bunch of bugfixes. Thanks to all contributors! What's Changed [Snyk] Upgrade @​babel/runtime from 7.28.3 to 7.28.4 by @​MrRio in parallax/jsPDF#3895 fix: cell function now properly accepts align parameter by @​vishal-rathod-07 in parallax/jsPDF#3896 Remove duplicated function "ga" from WebPDecoder.js by @​jvdp in parallax/jsPDF#3902 Fix font state management issue #3890 by @​srikanth-s2003 in parallax/jsPDF#3891 Fix pages property to always return current array reference ( #3898 ) by @​Opineppes in parallax/jsPDF#3899 Fix jsPDF + Vite compatibility issue #3851 by @​tishajain25 in parallax/jsPDF#3903 Do not add pages dynamically unless autoPaging is enabled by @​anmiles in parallax/jsPDF#3915 Fix: Context2d font regex too restrictive ( #3904 ) by @​Opineppes in parallax/jsPDF#3906 Fix Incorrect Typing for Margins in the TableConfig Interface Definition by @​Maito1794 in parallax/jsPDF#3816 New Contributors @​survivant made their first contribution in parallax/jsPDF#3897 @​vishal-rathod-07 made their first contribution in parallax/jsPDF#3896 @​jvdp made their first contribution in parallax/jsPDF#3902 @​srikanth-s2003 made their first contribution in parallax/jsPDF#3891 @​Opineppes made their first contribution in parallax/jsPDF#3899 @​tishajain25 made their first contribution in parallax/jsPDF#3903 @​anmiles made their first contribution in parallax/jsPDF#3915 @​josephyi made their first contribution in parallax/jsPDF#3907 @​Maito1794 made their first contribution in parallax/jsPDF#3816 Full Changelog: parallax/jsPDF@v3.0.3...v3.1.0 Commits e6cf03d 4.0.0 a688c8f restrict file system access in node build (#3931) a504e97 3.0.4 de802ab Fix Incorrect Typing for Margins in the TableConfig Interface Definition (#3816) 87162d1 chore: bump checkout, setup-node, and stale actions (#3907) e7dc622 Fix: Context2d font regex too restrictive ( #3904 ) (#3906) e080935 Do not add pages dynamically unless autoPaging is enabled (#3915) c768910 add package.json exports field (#3903) c10d90c Fix API.internal.pages not being updated when restoring a RenderTarget ( #389... 2db3d9d fix font list cache invalidation issue in context2d module (#3891) Additional commits viewable in compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase. Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: @dependabot rebase will rebase this PR @dependabot recreate will recreate this PR, overwriting any edits that have been made to it @dependabot merge will merge this PR after your CI passes on it @dependabot squash and merge will squash and merge this PR after your CI passes on it @dependabot cancel merge will cancel a previously requested merge and block automerging @dependabot reopen will reopen this PR if it is closed @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually @dependabot show ignore conditions will show all of the ignore conditions of the specified dependency @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

Open Graph Description: Bumps jspdf from 3.0.3 to 4.0.0. Release notes Sourced from jspdf's releases. v4.0.0 This release fixes a critical path traversal/local file inclusion security vulnerability in the jsPDF Node...

X Description: Bumps jspdf from 3.0.3 to 4.0.0. Release notes Sourced from jspdf's releases. v4.0.0 This release fixes a critical path traversal/local file inclusion security vulnerability in the jsPDF ...

Opengraph URL: https://github.com/codinit-dev/codinit-dev/pull/63

X: @github

direct link

Domain: github.com

Links:

Viewport: width=device-width