chore(deps): bump striptags, hexo-deployer-git and hexo-renderer-marked in /blog #1158
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps striptags to 3.2.0 and updates ancestor dependencies striptags, hexo-deployer-git and hexo-renderer-marked. These dependencies need to be updated together.
Updates
striptags
from 2.2.1 to 3.2.0Release notes
Sourced from striptags's releases.
Commits
f252a6b
Merge pull request from GHSA-qxg5-2qff-p49r2719515
fix: throw TypeError if 'html' is non-string argument27a5dd9
Update README.md example output127f2fb
v3.1.1f80b3b8
add typings94ceaf6
v3.1.09ed9eb0
Add IE11 support using minimal polyfill5eb9357
Fix typo in README.md7179485
Add notice about uglifyjs issues7427951
v3.0.1Updates
hexo-deployer-git
from 1.0.0 to 3.0.0Release notes
Sourced from hexo-deployer-git's releases.
Commits
70e2c8f
release: 3.0.0 (#198)a431418
chore(deps-dev): bump mocha from 7.2.0 to 8.0.1 (#190)d95bf33
chore(deps-dev): bump eslint from 6.8.0 to 7.1.0 (#188)751b7a7
chore(deps): bump hexo-fs from 2.0.0 to 3.0.1 (#178)c312a15
chore(deps): bump hexo-util from 1.9.0 to 2.1.0 (#184)6abb97b
ci: drop node 8 & add node 14 (#181)d38cabd
chore(deps-dev): eslint-config-hexo from 3.0.0 to 4.1.0 (#156)6e84df7
chore(deps): bump chalk from 3.0.0 to 4.0.0 (#176)da86591
chore(deps-dev): bump mocha from 6.2.3 to 7.1.2 (#179)6732e1e
chore: add release-drafter (#166)Maintainer changes
This version was pushed to npm by yoshinorin, a new releaser for hexo-deployer-git since your current version.
Updates
hexo-renderer-marked
from 0.2.11 to 6.0.0Release notes
Sourced from hexo-renderer-marked's releases.
... (truncated)
Commits
74d024e
release: v6.0.0 (#236)205efc6
chore(deps): update deps & replacenyc
withc8
(#235)12cd797
[feat]: add marked extensions support (#227)4b5b702
chore(deps): bump jsdom from 19.0.0 to 20.0.1 (#233)9ea35a5
chore: require node14+ (#234)261c9fd
chore(deps-dev): bump mocha from 9.2.2 to 10.0.0 (#226)43db794
docs(tokenizer): utilise escapeHTML() (#222)4304601
chore: bump version from 4.1.0 to 5.0.0 (#220)9c48448
chore(deps): bump marked from 3.0.8 to 4.0.1 (#214)20e9d00
chore(deps-dev): bump eslint-config-hexo from 4.2.0 to 5.0.0 (#219)Maintainer changes
This version was pushed to npm by yoshinorin, a new releaser for hexo-renderer-marked since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and languageYou can disable automated security fix PRs for this repo from the Security Alerts page.