Skip to content

fix(deps): update dependency postcss to v8.5.16#41

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/postcss-8.x
Open

fix(deps): update dependency postcss to v8.5.16#41
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/postcss-8.x

Conversation

@renovate

@renovate renovate Bot commented Jan 4, 2024

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Confidence
postcss (source) 8.4.328.5.16 age confidence

Release Notes

postcss/postcss (postcss)

v8.5.16

Compare Source

v8.5.15

Compare Source

  • Fixed declaration parsing performance (by @​homanp).

v8.5.14

Compare Source

v8.5.13

Compare Source

  • Fixed postcss-scss commend regression.

v8.5.12

Compare Source

  • Fixed reading any file via user-generated CSS.
  • Added opts.unsafeMap to disable checks.

v8.5.11

Compare Source

  • Fixed nested brackets parsing performance (by @​offset).

v8.5.10

Compare Source

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).

v8.5.9

Compare Source

  • Speed up source map encoding paring in case of the error.

v8.5.8

Compare Source

  • Fixed Processor#version.

v8.5.7

Compare Source

  • Improved source map annotation cleaning performance (by CodeAnt AI).

v8.5.6

Compare Source

  • Fixed ContainerWithChildren type discriminating (by @​Goodwine).

v8.5.5

Compare Source

  • Fixed package.jsonexports compatibility with some tools (by @​JounQin).

v8.5.4

Compare Source

v8.5.3

Compare Source

v8.5.2

Compare Source

v8.5.1

Compare Source

  • Fixed declaration parsing performance (by @​homanp).

v8.5.0: 8.5 “Duke Alloces”

Compare Source

President Alloces seal

PostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.

@​romainmenke during his work on Stylelint added Input#document in additional to Input#css.

root.source.input.document //=> "<p>Hello</p>
                           //    <style>
                           //    p {
                           //      color: green;
                           //    }
                           //    </style>"
root.source.input.css      //=> "p {
                           //      color: green;
                           //    }"

Thanks to Sponsors

This release was possible thanks to our community.

If your company wants to support the sustainability of front-end infrastructure or wants to give some love to PostCSS, you can join our supporters by:

v8.4.49

Compare Source

v8.4.48

Compare Source

  • Fixed position calculation in error/warnings methods (by @​romainmenke).

v8.4.47

Compare Source

  • Removed debug code.

v8.4.46

Compare Source

  • Fixed Cannot read properties of undefined (reading 'before').

v8.4.45

Compare Source

  • Removed unnecessary fix which could lead to infinite loop.

v8.4.44

Compare Source

  • Another way to fix markClean is not a function error.

v8.4.43

Compare Source

  • Fixed markClean is not a function error.

v8.4.42

Compare Source

  • Fixed CSS syntax error on long minified files (by @​varpstar).

v8.4.41

Compare Source

v8.4.40

Compare Source

  • Moved to getter/setter in nodes types to help Sass team (by @​nex3).

v8.4.39

Compare Source

v8.4.38

Compare Source

v8.4.37

Compare Source

  • Fixed original.column are not numbers error in another case.

v8.4.36

Compare Source

  • Fixed original.column are not numbers error on broken previous source map.

v8.4.35

Compare Source

  • Avoid ! in node.parent.nodes type.
  • Allow to pass undefined to node adding method to simplify types.

v8.4.34

Compare Source

  • Fixed AtRule#nodes type (by Tim Weißenfels).
  • Cleaned up code (by Dmitry Kirillov).

v8.4.33

Compare Source

  • Fixed NoWorkResult behavior difference with normal mode (by Romain Menke).
  • Fixed NoWorkResult usage conditions (by @​ahmdammarr).

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@vercel

vercel Bot commented Jan 4, 2024

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
background-eraser Ready Ready Preview, Comment Jun 28, 2026 4:40pm

@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.33 fix(deps): update dependency postcss to v8.4.34 Feb 5, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from da02529 to f3b123b Compare February 5, 2024 22:46
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.34 fix(deps): update dependency postcss to v8.4.35 Feb 7, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from f3b123b to 95982c4 Compare February 7, 2024 18:59
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 95982c4 to a072311 Compare March 17, 2024 22:06
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.35 fix(deps): update dependency postcss to v8.4.36 Mar 17, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from a072311 to 4ed645e Compare March 19, 2024 18:43
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.36 fix(deps): update dependency postcss to v8.4.37 Mar 19, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 4ed645e to 129eadb Compare March 21, 2024 00:30
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.37 fix(deps): update dependency postcss to v8.4.38 Mar 21, 2024
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.38 fix(deps): update dependency postcss to v8.4.39 Jun 29, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 129eadb to 419abb8 Compare June 29, 2024 18:39
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 419abb8 to bd84ec6 Compare July 24, 2024 19:58
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.39 fix(deps): update dependency postcss to v8.4.40 Jul 24, 2024
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.40 fix(deps): update dependency postcss to v8.4.41 Aug 6, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from bd84ec6 to 065386c Compare August 6, 2024 00:21
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.41 fix(deps): update dependency postcss to v8.4.42 Aug 31, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 065386c to 829279f Compare August 31, 2024 21:55
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.42 fix(deps): update dependency postcss to v8.4.43 Sep 1, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from e37c4db to 4dd1d65 Compare November 11, 2024 22:35
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.48 fix(deps): update dependency postcss to v8.4.49 Nov 11, 2024
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.49 fix(deps): update dependency postcss to v8.4.49 - autoclosed Dec 8, 2024
@renovate renovate Bot closed this Dec 8, 2024
@renovate renovate Bot deleted the renovate/postcss-8.x branch December 8, 2024 18:20
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.49 - autoclosed fix(deps): update dependency postcss to v8.4.49 Dec 8, 2024
@renovate renovate Bot reopened this Dec 8, 2024
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 0433283 to 4dd1d65 Compare December 8, 2024 23:52
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.4.49 fix(deps): update dependency postcss to v8.5.0 Jan 13, 2025
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 4dd1d65 to 067a3fb Compare January 13, 2025 22:10
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.5.0 fix(deps): update dependency postcss to v8.5.1 Jan 14, 2025
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 067a3fb to b335945 Compare January 14, 2025 13:57
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.5.1 fix(deps): update dependency postcss to v8.5.2 Feb 10, 2025
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from b335945 to 4a89468 Compare February 10, 2025 21:49
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.5.2 fix(deps): update dependency postcss to v8.5.3 Feb 19, 2025
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 4a89468 to e61e0cf Compare February 19, 2025 16:10
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from e61e0cf to 9da21fa Compare May 29, 2025 06:43
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.5.3 fix(deps): update dependency postcss to v8.5.4 May 29, 2025
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from 9da21fa to a7d8d51 Compare June 11, 2025 17:35
@renovate renovate Bot changed the title fix(deps): update dependency postcss to v8.5.4 fix(deps): update dependency postcss to v8.5.5 Jun 11, 2025
@renovate renovate Bot force-pushed the renovate/postcss-8.x branch from a7d8d51 to 47eb967 Compare June 16, 2025 17:10
@secure-code-warrior-for-github

Copy link
Copy Markdown

Micro-Learning Topic: Cross-site scripting (Detected by phrase)

Matched on "XSS"

Cross-site scripting vulnerabilities occur when unescaped input is rendered into a page displayed to the user. When HTML or script is included in the input, it will be processed by a user's browser as HTML or script and can alter the appearance of the page or execute malicious scripts in their user context.

Try a challenge in Secure Code Warrior

Helpful references

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants