Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade tailwindcss from 1.9.6 to 3.1.6 #544

Open
wants to merge 1 commit into
base: canary
Choose a base branch
from
Open

[Snyk] Upgrade tailwindcss from 1.9.6 to 3.1.6 #544

wants to merge 1 commit into from

Conversation

baby636
Copy link
Owner

@baby636 baby636 commented Aug 11, 2022

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade tailwindcss from 1.9.6 to 3.1.6.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Warning: This is a major version upgrade, and may be a breaking change.

  • The recommended version is 116 versions ahead of your current version.
  • The recommended version was released a month ago, on 2022-07-11.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-POSTCSS-1255640		 586/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3		 Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-POSTCSS-1255640		 586/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3		 Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-POSTCSS-1090595		 586/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: tailwindcss
  • 3.1.6 - 2022-07-11

    Fixed

    • Fix usage on Node 12.x (b4e637e)
    • Handle theme keys with slashes when using theme() in CSS (#8831)
  • 3.1.5 - 2022-07-07

    Added

    • Support configuring a default font-weight for each font size utility (#8763)
    • Add support for alpha values in safe list (#8774)

    Fixed

    • Improve types to support fallback values in the CSS-in-JS syntax used in plugin APIs (#8762)
    • Support including tailwindcss and autoprefixer in postcss.config.js in standalone CLI (#8769)
    • Fix using special-characters as prefixes (#8772)
    • Don’t prefix classes used within arbitrary variants (#8773)
    • Add more explicit types for the default theme (#8780)
  • 3.1.4 - 2022-06-21

    Fixed

    • Provide default to <alpha-value> when using theme() (#8652)
    • Detect arbitrary variants with quotes (#8687)
    • Don’t add spaces around raw / that are preceded by numbers (#8688)
  • 3.1.3 - 2022-06-14

    Fixed

    • Fix extraction of multi-word utilities with arbitrary values and quotes (#8604)
    • Fix casing of import of corePluginList type definition (#8587)
    • Ignore PostCSS nodes returned by addVariant (#8608)
    • Fix missing spaces around arithmetic operators (#8615)
    • Detect alpha value in CSS theme() function when using quotes (#8625)
    • Fix "Maximum call stack size exceeded" bug (#8636)
    • Allow functions returning parallel variants to mutate the container (#8622)
    • Remove text opacity CSS variables from ::marker (#8622)
  • 3.1.2 - 2022-06-10

    Fixed

    • Ensure \ is a valid arbitrary variant token (#8576)
    • Enable postcss-import in the CLI by default in watch mode (#8574, #8580)
  • 3.1.1 - 2022-06-09

    Fixed

    • Fix candidate extractor regression (#8558)
    • Split ::backdrop into separate defaults group (#8567)
    • Fix postcss plugin type (#8564)
    • Fix class detection in markdown code fences and slim templates (#8569)
  • 3.1.0 - 2022-06-09

    We just released Tailwind CSS v3.1 — the first new feature release since v3.0 came out last year!

    Read the announcement post for all the details, and watch the YouTube video for a tour of some of the highlights.

    Added

    • Support PostCSS Document nodes (#7291)
    • Add text-start and text-end utilities (#6656)
    • Support customizing class name when using darkMode: 'class' (#5800)
    • Add --poll option to the CLI (#7725)
    • Add new border-spacing utilities (#7102)
    • Add enabled variant (#7905)
    • Add TypeScript types for the tailwind.config.js file (#7891)
    • Add backdrop variant (#7924, #8526)
    • Add grid-flow-dense utility (#8193)
    • Add mix-blend-plus-lighter utility (#8288)
    • Add arbitrary variants (#8299)
    • Add experimental matchVariant API (#8310, 34fd0fb8)
    • Add prefers-contrast media query variants (#8410)
    • Add opacity support when referencing colors with theme function (#8416)
    • Add postcss-import support to the CLI (#8437)
    • Add optional variant (#8486)
    • Add <alpha-value> placeholder support for custom colors (#8501)

    Fixed

    • Types: allow for arbitrary theme values (for 3rd party plugins) (#7926)
    • Don’t split vars with numbers in them inside arbitrary values (#8091)
    • Require matching prefix when detecting negatives (#8121)
    • Handle duplicate At Rules without children (#8122)
    • Allow arbitrary values with commas in @ apply (#8125)
    • Fix intellisense for plugins with multiple @ apply rules (#8213)
    • Improve type detection for arbitrary color values (#8201)
    • Support PostCSS config options in config file in CLI (#8226)
    • Remove default [hidden] style in preflight (#8248)
    • Only check selectors containing base apply candidates for circular dependencies (#8222)
    • Rewrite default class extractor (#8204)
    • Move important selector to the front when @ apply-ing selector-modifying variants in custom utilities (#8313)
    • Error when registering an invalid custom variant (#8345)
    • Create tailwind.config.cjs file in ESM package when running init (#8363)
    • Fix matchVariants that use at-rules and placeholders (#8392)
    • Improve types of the tailwindcss/plugin (#8400)
    • Allow returning parallel variants from addVariant or matchVariant callback functions (#8455)
    • Try using local postcss installation first in the CLI (#8270)
    • Allow default ring color to be a function (#7587)
    • Don't inherit to value from parent gradients (#8489)
    • Remove process dependency from log functions (#8530)
    • Ensure we can use @ import 'tailwindcss/...' without node_modules (#8537)

    Changed

    • Only apply hover styles when supported (future) (#8394)
    • Respect default ring color opacity (future) (#8448, 3f4005e)
  • 3.0.24 - 2022-04-12

    Fixed

    • Prevent nesting plugin from breaking other plugins (#7563)
    • Recursively collapse adjacent rules (#7565)
    • Preserve source maps for generated CSS (#7588)
    • Split box shadows on top-level commas only (#7479)
    • Use local user CSS cache for @ apply (#7524)
    • Invalidate context when main CSS changes (#7626)
    • Only add ! to selector class matching template candidate when using important modifier with mutli-class selectors (#7664)
    • Correctly parse and prefix animation names with dots (#7163)
    • Fix extraction from template literal/function with array (#7481)
    • Don't output unparsable arbitrary values (#7789)
    • Fix generation of div:not(.foo) if .foo is never defined (#7815)
    • Allow for custom properties in rgb, rgba, hsl and hsla colors (#7933)
    • Remove autoprefixer as explicit peer-dependency to avoid invalid warnings in situations where it isn't actually needed (#7949)
    • Ensure the percentage data type is validated correctly (#8015)

    Changed

    • Replace chalk with picocolors (#6039)
    • Replace cosmiconfig with lilconfig (#6039)
    • Update cssnano to avoid removing empty variables when minifying (#7818)
  • 3.0.23 - 2022-02-16
  • 3.0.22 - 2022-02-11
  • 3.0.21 - 2022-02-10
  • 3.0.20 - 2022-02-10
  • 3.0.19 - 2022-02-07
  • 3.0.18 - 2022-01-28
  • 3.0.17 - 2022-01-26
  • 3.0.16 - 2022-01-24
  • 3.0.15 - 2022-01-15
  • 3.0.14 - 2022-01-14
  • 3.0.13 - 2022-01-11
  • 3.0.12 - 2022-01-07
  • 3.0.11 - 2022-01-05
  • 3.0.10 - 2022-01-04
  • 3.0.9 - 2022-01-03
  • 3.0.8 - 2021-12-28
  • 3.0.7 - 2021-12-17
  • 3.0.6 - 2021-12-16
  • 3.0.5 - 2021-12-15
  • 3.0.4 - 2021-12-15
  • 3.0.3 - 2021-12-15
  • 3.0.2 - 2021-12-13
  • 3.0.1 - 2021-12-11
  • 3.0.0 - 2021-12-09
  • 3.0.0-alpha.2 - 2021-11-08
  • 3.0.0-alpha.1 - 2021-10-01
  • 2.2.19 - 2021-10-29
  • 2.2.18 - 2021-10-29
  • 2.2.17 - 2021-10-13
  • 2.2.16 - 2021-09-26
  • 2.2.15 - 2021-09-10
  • 2.2.14 - 2021-09-08
  • 2.2.13 - 2021-09-08
  • 2.2.12 - 2021-09-08
  • 2.2.11 - 2021-09-07
  • 2.2.10 - 2021-09-06
  • 2.2.9 - 2021-08-30
  • 2.2.8 - 2021-08-27
  • 2.2.7 - 2021-07-23
  • 2.2.6 - 2021-07-21
  • 2.2.5 - 2021-07-21
  • 2.2.4 - 2021-06-23
  • 2.2.3 - 2021-06-23
  • 2.2.2 - 2021-06-18
  • 2.2.1 - 2021-06-18
  • 2.2.0 - 2021-06-17
  • 2.2.0-canary.16 - 2021-06-14
  • 2.2.0-canary.15 - 2021-06-14
  • 2.2.0-canary.14 - 2021-06-10
  • 2.2.0-canary.13 - 2021-06-04
  • 2.2.0-canary.12 - 2021-06-04
  • 2.2.0-canary.11 - 2021-05-29
  • 2.2.0-canary.10 - 2021-05-28
  • 2.2.0-canary.9 - 2021-05-20
  • 2.2.0-canary.8 - 2021-05-14
  • 2.2.0-canary.7 - 2021-05-14
  • 2.2.0-canary.6 - 2021-05-07
  • 2.2.0-canary.5 - 2021-05-07
  • 2.2.0-canary.4 - 2021-05-07
  • 2.2.0-canary.3 - 2021-05-06
  • 2.2.0-canary.2 - 2021-05-06
  • 2.2.0-canary.1 - 2021-05-06
  • 2.1.4 - 2021-06-02
  • 2.1.3 - 2021-06-01
  • 2.1.2 - 2021-04-23
  • 2.1.2-internal.4 - 2021-06-17
  • 2.1.2-internal.3 - 2021-06-17
  • 2.1.2-internal.2 - 2021-06-17
  • 2.1.2-internal.1 - 2021-06-17
  • 2.1.1 - 2021-04-05
  • 2.1.0 - 2021-04-05
  • 2.1.0-canary.2 - 2021-04-05
  • 2.1.0-canary.1 - 2021-04-05
  • 2.0.4 - 2021-03-17
  • 2.0.3 - 2021-02-07
  • 2.0.2 - 2020-12-11
  • 2.0.1 - 2020-11-18
  • 2.0.1-compat - 2020-11-18
  • 2.0.0 - 2020-11-18
  • 2.0.0-compat - 2020-11-18
  • 2.0.0-alpha.25-compat - 2020-11-17
  • 2.0.0-alpha.24-compat - 2020-11-17
  • 2.0.0-alpha.23-compat - 2020-11-16
  • 2.0.0-alpha.25 - 2020-11-17
  • 2.0.0-alpha.24 - 2020-11-17
  • 2.0.0-alpha.23 - 2020-11-16
  • 2.0.0-alpha.22 - 2020-11-16
  • 2.0.0-alpha.21 - 2020-11-15
  • 2.0.0-alpha.20 - 2020-11-14
  • 2.0.0-alpha.19 - 2020-11-14
  • 2.0.0-alpha.18 - 2020-11-14
  • 2.0.0-alpha.17 - 2020-11-13
  • 2.0.0-alpha.16 - 2020-11-12
  • 2.0.0-alpha.15 - 2020-11-12
  • 2.0.0-alpha.14 - 2020-11-11
  • 2.0.0-alpha.13 - 2020-11-11
  • 2.0.0-alpha.12 - 2020-11-10
  • 2.0.0-alpha.11 - 2020-11-10
  • 2.0.0-alpha.10 - 2020-11-09
  • 2.0.0-alpha.9 - 2020-11-07
  • 2.0.0-alpha.8 - 2020-11-06
  • 2.0.0-alpha.7 - 2020-11-05
  • 2.0.0-alpha.6 - 2020-11-04
  • 2.0.0-alpha.5 - 2020-10-30
  • 2.0.0-alpha.4 - 2020-10-29
  • 2.0.0-alpha.3 - 2020-10-27
  • 2.0.0-alpha.2 - 2020-10-25
  • 2.0.0-alpha.1 - 2020-10-21
  • 1.9.6 - 2020-10-23
from tailwindcss GitHub release notes
Commit messages
Package name: tailwindcss

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@baby636 baby636 mentioned this pull request Jun 24, 2023
Open
@baby636 baby636 mentioned this pull request Dec 1, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@baby636 @snyk-bot