[Snyk] Upgrade recharts from 2.10.3 to 2.12.1 #184
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade recharts from 2.10.3 to 2.12.1. See this package in npm: https://www.npmjs.com/package/recharts See this project in Snyk: https://app.snyk.io/org/lryanle/project/5b60c99c-75ea-4ce3-8b20-9bfefab000f5?utm_source=github&utm_medium=referral&page=upgrade-pr
|
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade recharts from 2.10.3 to 2.12.1.
As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
✨ Snyk has automatically assigned this pull request, set who gets assigned.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-AXIOS-6144788
Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 72, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.78, Score Version: V5
SNYK-JS-AXIOS-6124857
Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 72, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.78, Score Version: V5
SNYK-JS-FOLLOWREDIRECTS-6444610
Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 72, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.78, Score Version: V5
SNYK-JS-JOSE-6419224
Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 72, Reachable: No, Transitive dependency: No, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.78, Score Version: V5
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: recharts
-
2.12.1 - 2024-02-20
- fix: compact render should read from context, fixes brush panorama by @ ckifer in #4194 fixes #4193
-
2.12.0 - 2024-02-09
- Cleanup, tests, and refactoring work. Thanks @ PavelVanecek
- Upgrade react smooth, remove
- NOTE: animations will no longer have browser prefixes on them. Browsers have good support for this (https://caniuse.com/?search=transforms)
- Upgrade dev dependencies
- Upgrade TypeScript to 4.9.5 (no definition changes from upgrade)
- New storybook stories and doc updates
- @ TRFielder made their first contribution in #4088
-
2.11.0 - 2024-01-27
-
2.10.4 - 2024-01-09
- Storybook: Added Legend component story! by @ AnujSharma141 in #4039
- Storybook: add controlled brush storybook entry by @ ckifer in #4032
- Storybook: Custom Storybook theme for Recharts brand by @ csdiehl in #4016
- @ csdiehl made their first contribution in #4016
- @ AnujSharma141 made their first contribution in #4039
-
2.10.3 - 2023-12-01
- Fix non-unique react
- @ hkmarques made their first contribution in #4002
from recharts GitHub release notesWhat's Changed
Unintentional regression broke panoramic/compact Brush in 2.11.0 and 2.12.0, backport the fix to 2.x as we work on 3.x
Fix
Full Changelog: v2.12.0...v2.12.1
What's Changed
Bug fixes and a few small new features.
Releasing 2.12.0 to create a "clean slate" as contributors are discussing next moves for recharts.
We will try to focus on upgrades, architectural changes, and long-pending breaking changes so we can release a recharts v3. This will not be a large major version, or one hard to upgrade to, but rather a major version bump to prevent us from breaking people with library upgrades, large refactors, etc. Feature parity should hold. Thanks!
Features
Bar: Accept a callback function forminPointSizeso it can be determined by data by @ ckifer in #4099 closes #2819Accessibility: Enable screen reader support with accessibilityLayer and default tooltip by @ julianna-langston in #4077Fix
Bar:activeBarshould not be true by default, fixes a breaking change from 2.9.0 by @ ckifer in #4139 - fixes #4103 and #4101Scatter: fix non-unique key errors by @ imagineLife in #4087 - fixes #4151 and #4060Pie: fix non-unique key errors by @ imagineLife in #4106Tooltip: fix bug that caused throttled tooltip to stay active when moving mouse quickly by @ HHongSeungWoo in #4100 fixes #4093Chore
translateStyle, remove prop-types as a peerDepStorybook
New Contributors
Full Changelog: v2.11...v2.12.0
What's Changed
Fix some older bugs annoying bugs, TS typings, update to the storybook theme, and more
Fix
ResponsiveContainer: fixref.current.currentwithout breaking users using current implementation by @ HHongSeungWoo in #4008 - closes #3718Brush: Allow Brush to be controlled with start and end index via state by @ ckifer in #4034 - closes #2404Legend: TypeScript - Add the dataKey type to legend props by @ HHongSeungWoo in #4035 - closes #2909Pie: TypeScript - addedpayloadtoPieSectorDataItemtype by @ PavelVanecek in #4030Pie: unique sector keys fix by @ imagineLife in #4009 closes #3273RadialBar: allow className to be passed to Radial Bar background by @ ckifer in #4027 - closes #4011Storybook
New Contributors
Full Changelog: v2.10.3...v2.10.4
What's Changed
keybug(s) by @ imagineLife in #4006 - closes #4004New Contributors
Full Changelog: v2.10.2...v2.10.3
Commit messages
Package name: recharts
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
👩💻 Set who automatically gets assigned
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs