Update prosemirror-view & prosemirror-tables to most recent version (#5385)

* upgrade prosemirror packages to latest versions

* added changeset

* update package-lock
This commit is contained in:
bdbch 2024-07-24 08:01:26 +02:00 committed by GitHub
parent 9e0e167885
commit fe1781fd63
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
3 changed files with 277 additions and 263 deletions

View File

@ -0,0 +1,14 @@
---
"@tiptap/pm": patch
---
Because of an XSS vulnerability in the `prosemirror-model` package, we've updated all our prosemirror dependencies to the latest versions.
**Upgraded packages**:
- `prosemirror-model` from `^1.22.1` to `^1.22.2`
- `prosemirror-tables` from `^1.3.7` to `^1.4.0`
- `prosemirror-trailing-node` from `^2.0.8` to `^2.0.9`
- `prosemirror-view` from `^1.33.8` to `^1.33.9`
See https://discuss.prosemirror.net/t/heads-up-xss-risk-in-domserializer/6572

518
package-lock.json generated

File diff suppressed because it is too large Load Diff

View File

@ -136,14 +136,14 @@
"prosemirror-keymap": "^1.2.2",
"prosemirror-markdown": "^1.13.0",
"prosemirror-menu": "^1.2.4",
"prosemirror-model": "^1.22.1",
"prosemirror-model": "^1.22.2",
"prosemirror-schema-basic": "^1.2.3",
"prosemirror-schema-list": "^1.4.1",
"prosemirror-state": "^1.4.3",
"prosemirror-tables": "^1.3.7",
"prosemirror-trailing-node": "^2.0.8",
"prosemirror-tables": "^1.4.0",
"prosemirror-trailing-node": "^2.0.9",
"prosemirror-transform": "^1.9.0",
"prosemirror-view": "^1.33.8"
"prosemirror-view": "^1.33.9"
},
"repository": {
"type": "git",