[Snyk] Upgrade @tiptap/extension-highlight from 2.1.12 to 2.1.16 #1808

isomeradmin · 2024-02-14T21:04:10Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade @tiptap/extension-highlight from 2.1.12 to 2.1.16.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 4 versions ahead of your current version.
The recommended version was released a month ago, on 2024-01-11.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	609/1000 Why? Proof of Concept exploit, Recently disclosed, CVSS 8.6	Proof of Concept
Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	609/1000 Why? Proof of Concept exploit, Recently disclosed, CVSS 8.6	Proof of Concept
Improper Input Validation SNYK-JS-POSTCSS-5926692	609/1000 Why? Proof of Concept exploit, Recently disclosed, CVSS 8.6	No Known Exploit
Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	609/1000 Why? Proof of Concept exploit, Recently disclosed, CVSS 8.6	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @tiptap/extension-highlight

2.1.16 - 2024-01-11
- FIxes an issue with newlines being not interpreted correctly when inserted via setContent
Full Changelog: v2.1.15...v2.1.16
2.1.15 - 2024-01-08
What's Changed
- fix(core): fix insertContentAt keeping new lines in html content by @ bdbch in #4465
Full Changelog: v2.1.14...v2.1.15
2.1.14 - 2024-01-08
What's Changed
- fix(typography): require spaces after divisions to not break dates by @ bdbch in #4696
- Fix/link pasting by @ bdbch in #4700
Full Changelog: v2.1.13...v2.1.14
2.1.13 - 2023-11-30
What's Changed
- Fix esm.sh url by @ ije in #4549
- Feature/cloud docs by @ janthurau in #4624
- Fix typo by @ EricHasegawa in #4497
- Update vue3.md by @ y0ngdev in #4365
- docs: add information about transaction mapping in chains by @ bdbch in #4531
- Add Tailwind Intellisense configuration to docs by @ mmailaender in #4374
- Improve wording of menus.md by @ courthead in #4297
- fix(extension-youtube) XSS risk with src tag by @ C-Hess in #4602
- fix(react): fix performance regression because of select/deselect by @ bdbch in #4661
New Contributors
- @ ije made their first contribution in #4549
- @ mmailaender made their first contribution in #4374
- @ courthead made their first contribution in #4297
Full Changelog: v2.1.12...v2.1.13
2.1.12 - 2023-10-11
What's Changed
- fix(link): restore pasteHandler and add existing url check by @ bdbch in #4523
Full Changelog: v2.1.11...v2.1.12

from @tiptap/extension-highlight GitHub release notes

Commit messages

Package name: @tiptap/extension-highlight

abee6d5 fix(collaboration): fix typing issues
23b32f8 v2.1.16
2235908 fix(core): fix new lines being added via elementFromString (#4767)
a1d48da docs: fix link
8a6359d docs: Tiptap AI
1b34271 Revert "fix(extension-link): fix link not being kept when pasting url with link (#3975)"
8938acb fixes tests in marks/link
412b0b9 v2.1.15
135a12f fix(core): fix insertContentAt keeping new lines in html content (#4465)
faead69 Revert "update package-lock"
f72ed9e update package-lock
d495d92 fix(link): fix tests
6c7b27f v2.1.14
eaee9c7 Fix/link pasting (#4700)
5aa9051 split test run into seperate script
a70b19c Update README.md
1378883 Update alpine.md with better info about proxy limitations (#4678)
f6d7e00 fix(typography): require spaces after divisions to not break date formats (#4696)
e66160d remove auto assignees
b18d729 v2.1.13
ad7f659 fix(react): fix performance regression because of select/deselect (#4661)
b2e3b7e Merge pull request #4602 from C-Hess/fix/xss-youtube-risk
e6947ba fix(extension-youtube) fix lint
1bd714a fix(extension-youtube) change regex to disallow non-youtube domains