Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Upgrade EasyMDE to 2.16.1 #18278

Merged
merged 1 commit into from
Jan 15, 2022
Merged

Upgrade EasyMDE to 2.16.1 #18278

merged 1 commit into from
Jan 15, 2022

Conversation

wxiaoguang
Copy link
Contributor

@wxiaoguang wxiaoguang commented Jan 15, 2022

Upgade EasyMDE from 2.15.0 to 2.16.1

Changelog: https://github.com/Ionaru/easy-markdown-editor/blob/master/CHANGELOG.md

A DoS fix: Security issue in marked dependency.

I tested EasyMDE 2.16.1 on my side (briefly), no breaking.

@GiteaBot GiteaBot added the lgtm/need 1 This PR needs approval from one additional maintainer to be merged. label Jan 15, 2022
@GiteaBot GiteaBot added lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore. and removed lgtm/need 1 This PR needs approval from one additional maintainer to be merged. labels Jan 15, 2022
@6543 6543 merged commit aa1e8f6 into go-gitea:main Jan 15, 2022
@wxiaoguang wxiaoguang deleted the update-easymde branch January 15, 2022 10:28
Gusted pushed a commit to Gusted/gitea that referenced this pull request Jan 15, 2022
- NPM didn't like that package-lock.json was out-of-sync, webpack
throwed some errors as well with building.
- Follow-up for: go-gitea#18278
6543 pushed a commit that referenced this pull request Jan 15, 2022
- NPM didn't like that package-lock.json was out-of-sync, webpack
throwed some errors as well with building.
- Follow-up for: #18278
zjjhot added a commit to zjjhot/gitea that referenced this pull request Jan 15, 2022
* 'main' of https://github.com/go-gitea/gitea:
  Update `package-lock.json` (go-gitea#18283)
  Upgrade EasyMDE to 2.16.1 (go-gitea#18278)
  Remove golang vendored directory (go-gitea#18277)
  Changelog for 1.15.10 (go-gitea#18274) (go-gitea#18276)
  Support webauthn (go-gitea#17957)
zeripath added a commit to zeripath/gitea that referenced this pull request Jan 29, 2022
 ## [1.15.11](https://github.com/go-gitea/gitea/releases/tag/v1.15.11) - 2022-01-29

* SECURITY
  * Only view milestones from current repo (go-gitea#18414) (go-gitea#18418)
* BUGFIXES
  * Fix broken when no commits and default branch is not master (go-gitea#18422) (go-gitea#18424)
  * Fix commit's time (go-gitea#18375) (go-gitea#18409)
  * Fix restore without topic failure (go-gitea#18387) (go-gitea#18401)
  * Fix mermaid import in 1.15 (it uses ESModule now) (go-gitea#18382)
  * Update to go/text 0.3.7 (go-gitea#18336)
* MISC
  * Upgrade EasyMDE to 2.16.1 (go-gitea#18278) (go-gitea#18279)
Signed-off-by: Andrew Thornton <[email protected]>
@zeripath zeripath mentioned this pull request Jan 29, 2022
6543 pushed a commit that referenced this pull request Jan 30, 2022
## [1.15.11](https://github.com/go-gitea/gitea/releases/tag/v1.15.11) - 2022-01-29

* SECURITY
  * Only view milestones from current repo (#18414) (#18418)
* BUGFIXES
  * Fix broken when no commits and default branch is not master (#18422) (#18424)
  * Fix commit's time (#18375) (#18409)
  * Fix restore without topic failure (#18387) (#18401)
  * Fix mermaid import in 1.15 (it uses ESModule now) (#18382)
  * Update to go/text 0.3.7 (#18336)
* MISC
  * Upgrade EasyMDE to 2.16.1 (#18278) (#18279)
Chianina pushed a commit to Chianina/gitea that referenced this pull request Mar 28, 2022
Chianina pushed a commit to Chianina/gitea that referenced this pull request Mar 28, 2022
- NPM didn't like that package-lock.json was out-of-sync, webpack
throwed some errors as well with building.
- Follow-up for: go-gitea#18278
@go-gitea go-gitea locked and limited conversation to collaborators Apr 28, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants