Skip to content

[Snyk] Upgrade @uswds/uswds from 3.7.1 to 3.8.0 #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
SherfeyInv wants to merge 1 commit into from
Closed

[Snyk] Upgrade @uswds/uswds from 3.7.1 to 3.8.0 #4

SherfeyInv wants to merge 1 commit into from

Conversation

@SherfeyInv
Copy link
Owner

@SherfeyInv SherfeyInv commented Jun 7, 2024

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade @uswds/uswds from 3.7.1 to 3.8.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.

  • The recommended version was released on 3 months ago.

Release notes
Package name: @uswds/uswds
  • 3.8.0 - 2024-03-11

    Features

    Package A11y Breaking Markup change Description
    usa-checkbox, uswds-core - - - Added styles for indeterminate checkboxes. Checkboxes will now display as indeterminate when you set input.indeterminate = true via JavaScript or add the data-indeterminate attribute. This is only a style addition and does not affect checkbox functionality. Thanks @ lpsinger! (#5713)
    usa-in-page-nav - - - Added the ability to customize which headings will be pulled into the in-page navigation link list. Use the optional data-heading-selector attribute to designate the heading levels that should be included in the component. By default, the component will pull all H2 and H3 headers. (#5444)
    usa-table, uswds-core - - - Added a sticky header variant to the table component. Use the new .usa-table--sticky-header class to enable sticky positioning on table headers. Use the new $theme-table-sticky-top-offset setting to set the value of the top offset for sticky table headers. (#5420) Thanks @ etanb!
    usa-table, uswds-core       Added the ability to customize the table background color at a theme level. Use the $theme-table-background-color setting to set your desired table background color. (#5420)
    usa-validation - - - Added textarea support to the validation component. (#5233) Thanks @ danbrady!
    usa-layout-docs, uswds-core Yes Yes Yes Added $theme-sidenav-reorder for documentation page sidenav. Use $theme-sidenav-reorder to support old CSS order functionality. This setting can introduce usability issues, so we suggest that teams update their sidenav markup instead. (#5807)

    Bug fixes

    Package A11y Breaking Markup change Description
    usa-button, uswds-core - - - Improved the vertical alignment of usa-icon elements inside of usa-button. Use the new $theme-button-icon-gap setting to set the width of the horizontal gap between the button's text and icon. (#5398)
    usa-button, usa-checkbox, usa-combo-box, usa-file-input, usa-radio, uswds-core Yes - - Added automated color contrast checks for disabled tokens. On compilation, USWDS will test disabled element color contrast and provide a fallback color if minimum contrast is not met. If the fallback also fails to meet minimum contrast requirements, the system will provide a warning in the terminal. (#5455)
    usa-button-group - - - Improved the appearance of button groups when button text wraps to multiple lines. Now, every button in the group will be the same height. (#5657) Thanks @ aduth!
    usa-date-picker Yes - - Added focus styles to the calendar button in high contrast mode. Now, the calendar icon changes to the highlight high contrast token on focus. (#5701)
    usa-footer - - - Fixed a bug that caused some grid utility classes to be ignored when used inside usa-footer. (#5675)
    usa-layout-docs, uswds-core Yes Yes Yes Updated the order of the side navigation markup on the documentation page template. Now, the HTML order of the page matches the visual order at narrow screen widths. (#5794)
    usa-table Yes - Yes Simplified the structure of the scrollable table component example. This removes some accessibility errors related to incomplete table markup. (#5783)

    Breaking changes

    Documentation page template

    We're updating the documentation template to better match the HTML order of the side navigation to the visual order at mobile widths. Before USWDS 3.8.0 we used CSS to re-order the sidenav at mobile widths, placing it below the page's main text content. Starting with USWDS 3.8.0, our default styles no longer use CSS to re-order the side navigation. Now, we suggest including a duplicate sidenav after the main text content, using utility classes to hide/show the sidenavs at the proper widths. The example below shows a before/after.

    <div class="grid-container">
  <div class="grid-row grid-gap">
-   <div class="usa-layout-docs__sidenav">
+   <!-- One of two sidenav's only shown in desktop breakpoints. --> 
+   <div class="usa-layout-docs__sidenav display-none desktop:display-block desktop:grid-col-3">
      {{ SIDENAV_MARKUP }}
    </div>
-   <main class="usa-layout-docs__main desktop:grid-col-9 usa-prose usa-layout-docs" id="main-content">
+   <main class="desktop:grid-col-9 usa-prose usa-layout-docs" id="main-content">
      {{ MAIN_CONTENT }}
    </main>
  </div>
+ <!-- New duplicate section only shown on mobile. -->
+  <div class="usa-layout-docs__sidenav desktop:display-none">
+    {{ SIDENAV_MARKUP }}
+  </div>
</div>

    Teams that wish to maintain the old CSS order functionality can temporarily add $theme-sidenav-reorder: true to their project settings. This setting reinstates the CSS re-ordering. As we mentioned, this setting can introduce usability issues, so the best long-term solution is to update the sidenav markup instead.

    Dependencies and security

    Dependency name Previous version New version
    @ babel/core 7.23.2 7.23.6
    @ babel/preset-env 7.23.2 7.23.6
    @ types/node 20.8.9 20.10.4
    eslint 8.52.0 8.55.0
    eslint-config-prettier 9.0.0 9.1.0
    gulp-mocha 8.0.0 9.0.0
    handlebars-helpers 0.10.0 --
    html-webpack-plugin 5.5.3 5.5.4
    postcss 8.4.31 8.4.32
    postcss-import -- 15.1.0
    postcss-preset-env 9.2.0 9.3.0
    postcss-sass-loader 1.1.0 --
    resolve-url-loader 4.0.0 5.0.0
    sass -- 1.69.5
    snyk 1.1237.0 1.1262.0
    svgo 3.0.2 3.1.0
    typescript 5.2.2 5.3.3

    0 vulnerabilities in regular dependencies (dependencies for USWDS projects installed with npm install @ uswds/uswds)
    15 moderate, 25 high vulnerabilities in devDependencies (development dependencies).

    Release TGZ SHA-256 hash: 072f0f8333b1aa000183e00676616d9ff5a174e27ca8d35c130ca70ea5d4f66d

  • 3.7.1 - 2023-12-08

    What's new in USWDS 3.7.1

    Features

    Package A11Y Breaking Markup change Description
    usa-footer Removed the usa-layout-grid dependency from the usa-footer package. This update reduces the footer package size. Thanks @ danbrady! (#5289)

    If you notice changes in your layout after making this update, your Sass might be missing the usa-layout-grid package. You can include it by adding @ forward usa-layout-grid to your Sass entry point.

    Bug fixes

    Package A11Y Breaking Markup change Description
    usa-banner Removed invalid styles from the banner component. These styles had no effect and were safely removed. Thanks @ aduth! (#5587)
    usa-dark-background, usa-section Yes Fixed :visited link styling in usa-section--dark elements. Thanks @ aduth! (#5567)
    usa-footer Fixed the right alignment of footer elements. Footer content should now align with other page elements. Thanks @ danbrady! (#5234)
    usa-header, usa-nav Fixed the horizontal alignment of header submenu elements. Now, usa-nav__submenu elements should align with other header elements. Thanks @ lpsinger! (#5649)
    usa-nav Fixed the vertical alignment of the expand icon on header navigation items. The icon will now maintain vertical alignment when menu button text breaks to multiple lines. Thanks @ aduth! (#5654)
    usa-nav Fixed a bug that caused long button text to overflow into its padding. Now, button text breaks to multiple lines as expected and maintains vertical center alignment. (#5655)
    usa-nav Fixed a bug that prevented $theme-max-header-width from accepting a value of "none". (#5624)
    uswds-core Fixed a bug that prevented the CSS from generating .left-full, .right-full, and .top-full utility classes. (#5633)

    Dependencies and security

    Dependency name Previous version New version
    jsdom 19.0.0 22.1.0

    Thanks @ deckar01 for contributing this dependency update!

    0 vulnerabilities in regular dependencies (dependencies for USWDS projects installed with npm install @ uswds/uswds)
    24 moderate, 27 high vulnerabilities in devDependencies (development dependencies).

    Release TGZ SHA-256 hash: 6e1d3032e1a7ac614d05fe76c87cc398725d84e5ba0656a7a17c6ca4c7579526

from @uswds/uswds GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade @uswds/uswds from 3.7.1 to 3.8.0
48a62ec 
Snyk has created this PR to upgrade @uswds/uswds from 3.7.1 to 3.8.0.

See this package in npm:
@uswds/uswds

See this project in Snyk:
https://app.snyk.io/org/sherfeyinv/project/49009f97-a61c-4799-af28-8a061ae6b522?utm_source=github&utm_medium=referral&page=upgrade-pr
@SherfeyInv SherfeyInv closed this Feb 7, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@SherfeyInv @snyk-bot