Title: Bump fast-xml-parser from 5.5.6 to 5.5.7 by dependabot[bot] · Pull Request #3587 · github/codeql-action · GitHub
Open Graph Title: Bump fast-xml-parser from 5.5.6 to 5.5.7 by dependabot[bot] · Pull Request #3587 · github/codeql-action
X Title: Bump fast-xml-parser from 5.5.6 to 5.5.7 by dependabot[bot] · Pull Request #3587 · github/codeql-action
Description: Bumps fast-xml-parser from 5.5.6 to 5.5.7.
Changelog
Sourced from fast-xml-parser's changelog.
Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.
Note: Due to some last quick changes on v4, detail of v4.5.3 & v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion
5.5.7 / 2026-03-19
fix: entity expansion limits
update strnum package to 2.2.0
5.5.6 / 2026-03-16
update builder dependency
fix incorrect regex to replace . in entity name
fix check for entitiy expansion for lastEntities and html entities too
5.5.5 / 2026-03-13
sanitize dangerous tag or attribute name
error on critical property name
support onDangerousProperty option
5.5.4 / 2026-03-13
declare Matcher & Expression as unknown so user is not forced to install path-expression-matcher
5.5.3 / 2026-03-11
upgrade builder
5.5.2 / 2026-03-11
update dependency to fix typings
5.5.1 / 2026-03-10
fix dependency
5.5.0 / 2026-03-10
support path-expression-matcher
fix: stopNode should not be parsed
performance improvement for stopNode checking
5.4.2 / 2026-03-03
support maxEntityCount option
5.4.1 / 2026-02-25
fix (#785) unpairedTag node should not have tag content
5.4.0 / 2026-02-25
migrate to fast-xml-builder
5.3.9 / 2026-02-25
support strictReservedNames
5.3.8 / 2026-02-25
support maxNestedTags
... (truncated)
Commits
a21c441 update package detail
239b64a check for min value for entity exapantion options
61cb666 restrict more properties to be unsafe
41abd66 performance improvement of reading DOCTYPE
3dfcd20 refactor: performance improvement
See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show
Open Graph Description: Bumps fast-xml-parser from 5.5.6 to 5.5.7. Changelog Sourced from fast-xml-parser's changelog. Note: If you find missing information about particular minor version, that version must have bee...
X Description: Bumps fast-xml-parser from 5.5.6 to 5.5.7. Changelog Sourced from fast-xml-parser's changelog. Note: If you find missing information about particular minor version, that version must have...
Opengraph URL: https://github.com/github/codeql-action/pull/3587
X: @github
Domain: github.com
| route-pattern | /:user_id/:repository/pull/:id/files(.:format) |
| route-controller | pull_requests |
| route-action | files |
| fetch-nonce | v2:e3d0c7e0-d70a-eddc-23d5-4b8f9568259d |
| current-catalog-service-hash | ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b |
| request-id | C972:27C67C:E80532:14E077A:6A4CCC0C |
| html-safe-nonce | 9d5b0353e462e9525ebb3771e6b7d99f45013ba3e857fd0833462acbb40b3151 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJDOTcyOjI3QzY3QzpFODA1MzI6MTRFMDc3QTo2QTRDQ0MwQyIsInZpc2l0b3JfaWQiOiIyMDg2MDU3MTY0OTU0OTc5MzQwIiwicmVnaW9uX2VkZ2UiOiJpYWQiLCJyZWdpb25fcmVuZGVyIjoiaWFkIn0= |
| visitor-hmac | efd1eeb2fb9b4189c7639fba56706f6e934b8cdca974322b385a0485aa517a44 |
| hovercard-subject-tag | pull_request:3422803811 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/github/codeql-action/pull/3587/files |
| twitter:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| og:image:alt | Bumps fast-xml-parser from 5.5.6 to 5.5.7. Changelog Sourced from fast-xml-parser's changelog. Note: If you find missing information about particular minor version, that version must have bee... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | ee8a9d18044a05fe2d57b9ae797da38c8be34effb03f015f7c42e94770d28a1b |
| turbo-cache-control | no-preview |
| diff-view | unified |
| go-import | github.com/github/codeql-action git https://github.com/github/codeql-action.git |
| octolytics-dimension-user_id | 9919 |
| octolytics-dimension-user_login | github |
| octolytics-dimension-repository_id | 259445878 |
| octolytics-dimension-repository_nwo | github/codeql-action |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 259445878 |
| octolytics-dimension-repository_network_root_nwo | github/codeql-action |
| turbo-body-classes | logged-out env-production page-responsive full-width |
| disable-turbo | true |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | f84814acc6f036583fd43463f5847a846243d2a4 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width