Title: Bump @angular/common from 20.0.2 to 20.3.14 by dependabot[bot] · Pull Request #292 · plotly/angular-plotly.js · GitHub
Open Graph Title: Bump @angular/common from 20.0.2 to 20.3.14 by dependabot[bot] · Pull Request #292 · plotly/angular-plotly.js
X Title: Bump @angular/common from 20.0.2 to 20.3.14 by dependabot[bot] · Pull Request #292 · plotly/angular-plotly.js
Description: Bumps @angular/common from 20.0.2 to 20.3.14.
Release notes
Sourced from @angular/common's releases.
20.3.14
http
Commit
Description
prevent XSRF token leakage to protocol-relative URLs
20.3.13
No release notes provided.
20.3.12
No release notes provided.
20.3.11
common
Commit
Description
remove placeholder image listeners once view is removed
compiler
Commit
Description
support arbitrary nesting in :host-context()
support commas in :host() argument
support complex selectors in :nth-child()
support one additional level of nesting in :host()
core
Commit
Description
skip leave animations on view swaps
20.3.10
compiler-cli
Commit
Description
make required inputs diagnostic less noisy
migrations
Commit
Description
Prevent removal of templates referenced with preceding whitespace characters
20.3.9
No release notes provided.
20.3.8
common
Commit
Description
Blocks IPv6 localhost from preconnect checks
core
Commit
Description
... (truncated)
Changelog
Sourced from @angular/common's changelog.
20.3.14 (2025-11-25)
http
Commit
Type
Description
0276479e7d
fix
prevent XSRF token leakage to protocol-relative URLs
21.0.1 (2025-11-25)
compiler-cli
Commit
Type
Description
39c577bc36
fix
do not type check native controls with ControlValueAccessor
8d3a89a477
fix
escape angular control flow in jsdoc
bc34083d34
fix
ignore non-existent files
core
Commit
Type
Description
0ea1e07174
fix
apply bootstrap-options migration to platformBrowserDynamic
70507b8c1c
fix
debug data causing memory leak for root effects
a55482fca3
fix
notify profiler events in case of errors
49ad7c6508
fix
use injected DOCUMENT for CSP_NONCE
cc1ec09931
perf
avoid repeat searches for field directive
forms
Commit
Type
Description
7d5c7cf99a
feat
add DI option for classes on Field directive
8acf5d2756
fix
allow dynamic type bindings on signal form controls
de5fca94c5
fix
run reset as untracked
http
Commit
Type
Description
3240d856d9
fix
prevent XSRF token leakage to protocol-relative URLs
migrations
Commit
Type
Description
... (truncated)
Commits
0276479 fix(http): prevent XSRF token leakage to protocol-relative URLs
a8c577d docs: add reference to Built-in Pipes in multiple pipe files
8922cae Revert "refactor(http): migrate XSRF classes to use inject() function"
5047849 fix(common): remove placeholder image listeners once view is removed
4c66fe4 refactor(core): mark VERSION as @__PURE__ for better tree-shaking
2ad6b72 refactor(http): migrate XSRF classes to use inject() function
ee578d3 build: format md files
744cd5c refactor(http): simplifies destruction tracking using destroyed property
5ce9d88 docs: Adds guide links to HTTP API docs for better discoverability
020f176 feat(common): Blocks IPv6 localhost from preconnect checks
Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show
Open Graph Description: Bumps @angular/common from 20.0.2 to 20.3.14. Release notes Sourced from @angular/common's releases. 20.3.14 http Commit Description prevent XSRF token leakage to protocol-relative U...
X Description: Bumps @angular/common from 20.0.2 to 20.3.14. Release notes Sourced from @angular/common's releases. 20.3.14 http Commit Description prevent XSRF token leakage to protocol-relati...
Opengraph URL: https://github.com/plotly/angular-plotly.js/pull/292
X: @github
Domain: patch-diff.githubusercontent.com
| route-pattern | /:user_id/:repository/pull/:id/checks(.:format) |
| route-controller | pull_requests |
| route-action | checks |
| fetch-nonce | v2:7aff3705-d25c-354f-fc9f-7ad1a16ba8d6 |
| current-catalog-service-hash | 87dc3bc62d9b466312751bfd5f889726f4f1337bdff4e8be7da7c93d6c00a25a |
| request-id | DAC2:1CE4A4:8C7B06:C490A4:696E62C6 |
| html-safe-nonce | 767827942b1ef04f84b120974481fedb47dd2789a9c591be083130b00887ac2f |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJEQUMyOjFDRTRBNDo4QzdCMDY6QzQ5MEE0OjY5NkU2MkM2IiwidmlzaXRvcl9pZCI6IjgxNTEzOTk5ODE2Njc3MzgzMTAiLCJyZWdpb25fZWRnZSI6ImlhZCIsInJlZ2lvbl9yZW5kZXIiOiJpYWQifQ== |
| visitor-hmac | 0f3ac6289e253106ace8719f47296ae6165784fe79d5ee914118229b5ca16dc1 |
| hovercard-subject-tag | pull_request:3049230168 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,checks,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/plotly/angular-plotly.js/pull/292/checks |
| twitter:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| og:image:alt | Bumps @angular/common from 20.0.2 to 20.3.14. Release notes Sourced from @angular/common's releases. 20.3.14 http Commit Description prevent XSRF token leakage to protocol-relative U... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | 99a4a74f92e7618f6e15b4dbb9f4470c8d31701a90d89c21ff31970528b7f0c3 |
| turbo-cache-control | no-preview |
| go-import | github.com/plotly/angular-plotly.js git https://github.com/plotly/angular-plotly.js.git |
| octolytics-dimension-user_id | 5997976 |
| octolytics-dimension-user_login | plotly |
| octolytics-dimension-repository_id | 125262347 |
| octolytics-dimension-repository_nwo | plotly/angular-plotly.js |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 125262347 |
| octolytics-dimension-repository_network_root_nwo | plotly/angular-plotly.js |
| turbo-body-classes | logged-out env-production page-responsive full-width full-width-p-0 |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | ef0d97829e997c64864f25a29b00067f5dc3a4c4 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width